Project

General

Profile

Search

Results (102)

Bug #15930 (Incomplete): Mobile IPsec clients can't connect after gateway failover
If a gateway group is defined and selected as the Interface in the IPsec setup, connections will function properly wh ... and the secondary gateway takes over, mobile IPsec clients are unable to connect to the backup WAN until the IPsec service is manually stopped and restarted. ... ay failover: The file located at /var/etc/ipsec/strongswan.conf correctly reflects the backu ... ix2*. The configuration file at /var/etc/ipsec/swanctl.conf accurately displays the local I ... e. Nevertheless, the Status > System Logs > IPsec section does not display any logs related to ... nse on the server side. Restarting the IPsec service on the firewall allows clients to se ... he _local_addrs_ parameter is now accurate. 12/14/2024 07:22 PM
Feature #15843 (New): Allow log disable for APIPA auto rule
Scenario: Policy-based IPsec Remote side sending APIPA pings Blocks res ... e, an option to remove @quick@ from the same. 11/15/2024 05:06 PM
Feature #15827 (New): enable by default MSS for all IPsec VTI
According to netgate documenation, if using IPsec VTIs, you have to set the MSS value for each ... ld be helpful to have the ability within the IPsec advanced configuration to set an MSS or MTU for all IPsec VTI interfaces. 11/07/2024 05:06 PM
Feature #15698 (New): Provide global log level setting for IPsec under VPN --> IPsec --> Advanced Settings
strongswan provides six log levels (-1`to `4) ... own menus. If you are trying to troubleshoot IPsec, you may need to change the log level, and n ... ging subsystem and want to revert to default. 09/02/2024 10:57 PM
Bug #15605 (New): Status > Monitoring VTI graphs show incorrect traffic
While testing #15604 I noticed that the Statu ... se are graphs of a 15-minute iperf5 run. The IPsec graphs look correct but the received traffic ... eply) traffic being lopsided makes sense. 07/07/2024 03:40 PM
Bug #15604 (New): Equal cost multipath over IPsec VTI outbound routing only utilizing one path
A pair of ECMP tunnels was created between a ... 2.29.96.0/24 169.254.62.1 UG1 ipsec2 172.29.96.0/24 169.254.62.5 UG1 ipsec3 </pre> Tested with @iperf3 -R -P 4 -B 1 ... ections used VTI2 (169.254.62.5). pfSense IPsec configuration attached in case there are any questions about that. 07/07/2024 02:53 PM
Feature #15582 (New): Add option to automatic ... VPN networks from existing via WAN interfaces
It's a known issue that traffic intended for ... k the other was a Strongswan forum somewhere. 06/26/2024 08:39 PM
Feature #15348 (New): Block out PSK when viewing Phase 1 IPsec configuration
When filling out a PSK in the phase 1 proposa ... ulder surfing can see it is a security issue. 03/18/2024 02:31 PM
Bug #15317 (Confirmed): IPsec widget does not show mobile clients with IP addresses assigned from RADIUS
The front page IPsec widget does not show mobile clients on the M ... nected clients get an IP assigned from RADIUS 03/07/2024 02:17 PM
Bug #15087 (New): IPsec Keep Alive does not update the gateway status
If the IPsec gateway status is pending (e.g. on a VTI aft ... dpinger updates the gateway status to online. 12/12/2023 05:22 PM
(1-10/102)