https://redmine.pfsense.org/https://redmine.pfsense.org/favicon.ico?16780521162010-03-15T23:19:51ZpfSense bugtrackerpfSense - Bug #430: Cannot configure IPSec SA without local id for Roadwarrior configurationshttps://redmine.pfsense.org/issues/430?journal_id=12772010-03-15T23:19:51ZChris Buechlercbuechler@gmail.com
<ul></ul><p>what version?</p> pfSense - Bug #430: Cannot configure IPSec SA without local id for Roadwarrior configurationshttps://redmine.pfsense.org/issues/430?journal_id=12782010-03-15T23:36:19ZPaul K
<ul></ul><p>Ah sorry, 2.0. I am running 20100304 snapshot.</p> pfSense - Bug #430: Cannot configure IPSec SA without local id for Roadwarrior configurationshttps://redmine.pfsense.org/issues/430?journal_id=12792010-03-15T23:42:07ZChris Buechlercbuechler@gmail.com
<ul><li><strong>Category</strong> set to <i>IPsec</i></li><li><strong>Target version</strong> set to <i>2.0</i></li><li><strong>Affected Version</strong> set to <i>2.0</i></li></ul> pfSense - Bug #430: Cannot configure IPSec SA without local id for Roadwarrior configurationshttps://redmine.pfsense.org/issues/430?journal_id=12802010-03-16T08:12:49ZErmal Luçieri@pfsense.org
<ul><li><strong>Status</strong> changed from <i>New</i> to <i>Feedback</i></li></ul><p>Please test the committed changes.<br />I am not sure this is enough though try it on your side an we will see.</p> pfSense - Bug #430: Cannot configure IPSec SA without local id for Roadwarrior configurationshttps://redmine.pfsense.org/issues/430?journal_id=13172010-03-20T18:33:58ZPaul K
<ul></ul><p>Ermal, thanks for the quick fix.</p>
<p>I tested this with March 19th snap. It does produce correct SA configuration now</p>
<p>sainfo anonymous {...}</p>
<p>and road warriors can connect fine.</p>
<p>The only thing I noticed: if I check 'Provide a list of accessible networks to clients' flag in 'mode-cfg' section it uses configuration from phase-2 setup page -> 'Local Network' to generate config file and if I selected 'None' in the local network section racoon config file will have this entry:</p>
<pre><code>split_network include 0.0.0.0/0;</code></pre>
<p>I am not sure if this is a problem or not because I don't really use that option just thought I will mention it here.</p> pfSense - Bug #430: Cannot configure IPSec SA without local id for Roadwarrior configurationshttps://redmine.pfsense.org/issues/430?journal_id=15752010-04-17T00:50:51ZChris Buechlercbuechler@gmail.com
<ul><li><strong>Status</strong> changed from <i>Feedback</i> to <i>Resolved</i></li></ul>