Bug #4818: IPSec makes worse in some cases - since 2.2.3 Update - pfSense - pfSense bugtracker

Actions

Copy link

Bug #4818

closed

IPSec makes worse in some cases - since 2.2.3 Update

Added by Marvin Kamm over 9 years ago. Updated over 9 years ago.

Status:

Resolved

Priority:

Normal

Assignee:

Chris Buechler

Category:

IPsec

Target version:

2.2.4

Start date:

07/06/2015

Due date:

% Done:

Estimated time:

Plus Target Version:

Release Notes:

Affected Version:

2.2.3

Affected Architecture:

amd64

Description

Since updateing pfsense from V2.1.5 to V2.2.3, I´ve some issues with the IPsec VPN.
I´ve configured about 20 IPsec vpn connections to customers.

Four of them use Lancom routers for IPsec connections.
Exactly those four are not operational after updateing.

Connection parameters haven´t changed.
I tried to connect with 3DES encryption instead of AES but won´t work too.
Error I often see is "invalid ID_V1 payload length, decryption failed?".

Annexed an extract from the pfsense log.
I set IKE SA, IKE Child SA and Configuration backend in Diag mode at the IPsec Debug page.

Many Thanks!

Files

Download all files

IPsec_log.csv (25.8 KB) IPsec_log.csv		Marvin Kamm, 07/06/2015 10:19 AM
IPsec_log1.csv (18.4 KB) IPsec_log1.csv		Marvin Kamm, 07/07/2015 09:38 AM

Actions

Copy link

Also available in: Atom PDF

Project

General

Profile

pfSense

Custom queries

Bug #4818

IPSec makes worse in some cases - since 2.2.3 Update

Updated by Chris Buechler over 9 years ago

Updated by Marvin Kamm over 9 years ago

Updated by Jim Thompson over 9 years ago

Updated by Marvin Kamm over 9 years ago

Updated by Chris Buechler over 9 years ago