Bug #4188: IPSec SA requestid has limited range in FreeBSD - pfSense - pfSense bugtracker

Actions

Copy link

Bug #4188

closed

IPSec SA requestid has limited range in FreeBSD

Added by Ermal Luçi about 11 years ago. Updated about 11 years ago.

Status:

Resolved

Priority:

Very High

Assignee:

Ermal Luçi

Category:

IPsec

Target version:

2.2

Start date:

01/07/2015

Due date:

% Done:

100%

Estimated time:

Plus Target Version:

Release Notes:

Affected Version:

2.2

Affected Architecture:

Description

FreeBSD allows up to ~16000 range of reqid on the SAs specified manually.
There are problems with the IPsec SA tracking of strongswan since pfSense specifies manually them to be able to track the various tunnels in the status page.
This becomes a problem since for requests with multiple phase2 the reqid is multiplied by 1000 to be able to track things.

Either the kernel should be patched to increase the range or there should be found another way to track the tunnel status.

History
Notes
Property changes

Actions

Copy link

Also available in: Atom PDF

Project

General

Profile

pfSense

Custom queries

Bug #4188

IPSec SA requestid has limited range in FreeBSD

Updated by Ermal Luçi about 11 years ago

Updated by Chris Buechler about 11 years ago

Updated by Ermal Luçi about 11 years ago

Updated by Ermal Luçi about 11 years ago

Updated by Chris Buechler about 11 years ago

Updated by Ermal Luçi about 11 years ago

Updated by Pi Ba about 11 years ago

Updated by Chris Buechler about 11 years ago

Updated by Chris Buechler about 11 years ago