Actions
Bug #5320
closed
IPSec NAT rules are not removed when a tunnel is disabled
Start date:
10/19/2015
Due date:
% Done:
0%
Estimated time:
Plus Target Version:
Release Notes:
Affected Version:
All
Affected Architecture:
All
Description
After disabling an IPSec tunnel in the GUI the NAT rules in the phase2 entries are not removed and are still applied to traffic using that route in another IPSec tunnel.
This applies if the tunnel is disabled at the phase 2 or the phase 1 containing it.
NAT rules still appear in rules.debug.
Updated by Jim Pingle over 8 years ago
It appears the code in filter.inc is not checking for a disabled P1 or P2 when creating the NAT rules:
Updated by Jim Pingle over 8 years ago
- Category set to Rules / NAT
- Status changed from New to Confirmed
- Affected Version set to 2.2.x
- Affected Architecture All added
- Affected Architecture deleted (
)
Updated by Chris Buechler over 8 years ago
- Status changed from Confirmed to Feedback
- Affected Version changed from 2.2.x to All
should be good
Updated by Chris Buechler over 8 years ago
- Status changed from Feedback to Resolved
- Assignee set to Chris Buechler
fixed
Actions