Search
Results (102)
- Bug #15930 (Incomplete): Mobile IPsec clients can't connect after gateway failover
- If a gateway group is defined and selected as the Interface in the IPsec setup, connections will function properly wh ... and the secondary gateway takes over, mobile IPsec clients are unable to connect to the backup WAN until the IPsec service is manually stopped and restarted. ... ay failover: The file located at /var/etc/ipsec/strongswan.conf correctly reflects the backu ... ix2*. The configuration file at /var/etc/ipsec/swanctl.conf accurately displays the local I ... e. Nevertheless, the Status > System Logs > IPsec section does not display any logs related to ... nse on the server side. Restarting the IPsec service on the firewall allows clients to se ... he _local_addrs_ parameter is now accurate.
- Feature #15843 (New): Allow log disable for APIPA auto rule
- Scenario: Policy-based IPsec Remote side sending APIPA pings Blocks res ... e, an option to remove @quick@ from the same.
- Feature #15827 (New): enable by default MSS for all IPsec VTI
- According to netgate documenation, if using IPsec VTIs, you have to set the MSS value for each ... ld be helpful to have the ability within the IPsec advanced configuration to set an MSS or MTU for all IPsec VTI interfaces.
- Feature #15698 (New): Provide global log level setting for IPsec under VPN --> IPsec --> Advanced Settings
- strongswan provides six log levels (-1`to `4) ... own menus. If you are trying to troubleshoot IPsec, you may need to change the log level, and n ... ging subsystem and want to revert to default.
- Bug #15605 (New): Status > Monitoring VTI graphs show incorrect traffic
- While testing #15604 I noticed that the Statu ... se are graphs of a 15-minute iperf5 run. The IPsec graphs look correct but the received traffic ... eply) traffic being lopsided makes sense.
- Bug #15604 (New): Equal cost multipath over IPsec VTI outbound routing only utilizing one path
- A pair of ECMP tunnels was created between a ... 2.29.96.0/24 169.254.62.1 UG1 ipsec2 172.29.96.0/24 169.254.62.5 UG1 ipsec3 </pre> Tested with @iperf3 -R -P 4 -B 1 ... ections used VTI2 (169.254.62.5). pfSense IPsec configuration attached in case there are any questions about that.
- Feature #15582 (New): Add option to automatic ... VPN networks from existing via WAN interfaces
- It's a known issue that traffic intended for ... k the other was a Strongswan forum somewhere.
- Feature #15348 (New): Block out PSK when viewing Phase 1 IPsec configuration
- When filling out a PSK in the phase 1 proposa ... ulder surfing can see it is a security issue.
- Bug #15317 (Confirmed): IPsec widget does not show mobile clients with IP addresses assigned from RADIUS
- The front page IPsec widget does not show mobile clients on the M ... nected clients get an IP assigned from RADIUS
- Bug #15087 (New): IPsec Keep Alive does not update the gateway status
- If the IPsec gateway status is pending (e.g. on a VTI aft ... dpinger updates the gateway status to online.