Bug #8239: If IPsec bypasslan is enabled while the LAN interface is disabled, all traffic bypasses IPsec - pfSense - pfSense bugtracker

Actions

Copy link

Bug #8239

closed

If IPsec bypasslan is enabled while the LAN interface is disabled, all traffic bypasses IPsec

Added by Jim Pingle over 6 years ago. Updated about 6 years ago.

Status:

Resolved

Priority:

High

Assignee:

Jim Pingle

Category:

IPsec

Target version:

2.4.3

Start date:

12/27/2017

Due date:

% Done:

100%

Estimated time:

Plus Target Version:

Release Notes:

Affected Version:

2.4.x

Affected Architecture:

All

Description

If IPsec bypasslan is enabled while the LAN interface is disabled, all traffic bypasses IPsec because it makes an SPD for 0.0.0.0/0 to 0.0.0.0/0 set to 'none', which effectively makes all traffic skip IPsec processing.

bypasslan should be skipped if LAN is disabled or if LAN does not have an IP address

History
Notes
Property changes
Associated revisions

Actions

Copy link

Also available in: Atom PDF

Project

General

Profile

pfSense

Custom queries

Bug #8239

If IPsec bypasslan is enabled while the LAN interface is disabled, all traffic bypasses IPsec

Updated by Jim Pingle over 6 years ago

Updated by Jim Pingle over 6 years ago

Updated by Jim Pingle about 6 years ago