Revision bd4c337c
Added by Jim Pingle about 7 years ago
| src/usr/local/www/interfaces_assign.php | ||
|---|---|---|
| 169 | 169 |
} |
| 170 | 170 |
} |
| 171 | 171 |
|
| 172 |
global $ipsec_descrs; |
|
| 173 |
$ipsec_descrs = array(); |
|
| 174 |
if (is_array($config['ipsec']) && is_array($config['ipsec']['phase1']) && is_array($config['ipsec']['phase2'])) {
|
|
| 175 |
foreach ($config['ipsec']['phase1'] as $ph1ent) {
|
|
| 176 |
if ($ph1ent['disabled']) {
|
|
| 177 |
continue; |
|
| 178 |
} |
|
| 179 |
if (ipsec_vti($ph1ent)) {
|
|
| 180 |
$portname = "ipsec{$ph1ent['ikeid']}";
|
|
| 181 |
$portlist[$portname] = $ph1ent; |
|
| 182 |
$ipsec_descrs[$ph1ent['ikeid']] = $ph1ent['descr']; |
|
| 183 |
} |
|
| 184 |
} |
|
| 185 |
} |
|
| 186 |
|
|
| 172 | 187 |
|
| 173 | 188 |
$ifdescrs = interface_assign_description_fast($portlist,$friendlyifnames); |
| 174 | 189 |
|
Also available in: Unified diff
Please welcome routed IPsec using if_ipsec VTI interfaces. Implements #8544
To use, create a P1/P2 and set P2 to VTI using local/remote network as tunnel endpoint addresses, then assign the interface (enable, but IP type = none), and use like any other interface for routing.