Project

General

Profile

Actions

Bug #3826

closed

2.2 diag_ipsec.php issues

Added by Chris Buechler about 10 years ago. Updated about 10 years ago.

Status:
Resolved
Priority:
Normal
Assignee:
Ermal Luçi
Category:
IPsec
Target version:
Start date:
08/22/2014
Due date:
% Done:

0%

Estimated time:
Plus Target Version:
Release Notes:
Affected Version:
2.2
Affected Architecture:

Description

Couple issues with diag_ipsec.php.

1) always shows NAT-T - shows NAT-T for seemingly all IPsec connections. A basic site to site config with NAT-T disabled is the easiest way to replicate, you'll end up with something like:

1.2.3.4:500 NAT-T

2) the Overview tab doesn't show tunnels that are configured, but don't have SAs. Every non-disabled IPsec tunnel needs to show up on diag_ipsec.php, as they always have.

3) the local and remote networks fields display something like:

10.0.0.0/24|/0

The |/0 needs to be trimmed off there to avoid confusing people.

Actions #1

Updated by Jim Thompson about 10 years ago

  • Assignee set to Ermal Luçi
Actions #2

Updated by Ermal Luçi about 10 years ago

  • Status changed from New to Feedback

Point 1) is fixed already.
Point 3) has been corrected by Renato though it does not show the local subnet in case of nat specified.

Should be ok now.

Actions #3

Updated by Chris Buechler about 10 years ago

  • Status changed from Feedback to Resolved

these issues are fixed. The page as a whole needs some design work so "Overview" isn't a huge wall of text, will cover that separately.

Actions

Also available in: Atom PDF