Project

General

Profile

Actions
Copy link

Feature #5919

closed

Add a control to the web gui to allow the setting of leftsendcert in IPSec

Added by Steve Wheeler about 8 years ago. Updated over 4 years ago.

Status:
Duplicate
Priority:
Normal
Assignee:
-
Category:
IPsec
Target version:
-
Start date:
02/22/2016
Due date:
% Done:

0%

Estimated time:
Plus Target Version:
Release Notes:

Description

In some IPSec tunnels the responder end requires the initiator to set send the certificate and that's only possible by setting leftsendcert=always or yes in ipsec.conf.
Currently we only set that if you are using IKEv2 with EAP. Some other cases require it to establish a tunnel.
See: SFH-91652
This patch allowed that to connect: http://files.atx.pfsense.org/jimp/patches/rsasig-leftsendcert-always.diff

Actions
Copy link
 #1

Updated by Jim Pingle over 4 years ago

  • Status changed from New to Duplicate

This appears to be a duplicate of #6082 but if it's not, which scenarios still do not work?

In the code as it is today, anywhere that has leftcert also has leftsendcert=always.

Actions
Copy link
 #2

Updated by Jim Pingle over 4 years ago

  • Target version deleted (Future)
Actions
Copy link

Also available in: Atom PDF