Actions
Bug #4849
closedipsec: keepalive not working; wrong source ip used
Status:
Not a Bug
Priority:
Normal
Assignee:
-
Category:
-
Target version:
-
Start date:
07/16/2015
Due date:
% Done:
0%
Estimated time:
Plus Target Version:
Release Notes:
Affected Version:
Affected Architecture:
amd64
Description
While debugging ipsec tunnels between two pfsenses I noticed that using ping on the command line does not work out of the box.
While pinging from a lan host to a remote host works flawlessly, pinging the same host from the pfsense cli does not.
When supplying a correct source adress (ping -S $lanAdress $remoteHost) it works without problems.
Now I have some ipsec tunnels timing out, even so even though an ip is supplied under "advance options -> Automatically ping host". I suspect that the pfsense cannot reach the remote net due to the same problem.
A dropdown would be needed where the source ip can be selected when pinging the remote host. Otherwise the packets will come from localhost and will never be routed into the tunnel.
Actions