IPSec hang with 11 P2s
-
I've now reproduced this issue on two devices running pfSense 2.5.2 CE where an IKEv1 IPSec tunnel with 11 P2s will cause the IPSec process to hang and webGUI's Status / IPSec will sit at "Collecting IPsec status information." forever. After a few minutes all tunnels will go down requiring an ipsec restart.
I haven't found an existing bug on this issue but am working on a minimum config that can reproduce it.
Just figured I'd check here if anyone is aware of a known issue that would cause this.
-
While that doesn't sound familiar on its own, there are quite a few known issues with IPsec on 2.5.x. Please test on a 2.6.0 snapshot to see if you can reproduce the problem there.
Remember: Upvote with the ๐ button for any user/post you find to be helpful, informative, or deserving of recognition!
Need help fast? Netgate Global Support!
Do not Chat/PM for help!
-
@jimp I was not able to reproduce with the dev 2.6.0 branch so it does appear to have been fixed.
It looks like it will be quite awhile before 2.6.0 is ready for release though. So we may have to revert to 2.4.5 in the meantime.
-
@artooro said in IPSec hang with 11 P2s:
It looks like it will be quite awhile before 2.6.0 is ready for release though. So we may have to revert to 2.4.5 in the meantime.
Target for release is early next month, it's really almost done except for a few items still being worked on. Overall I'd say it's likely to be more stable than 2.5.2 for many, especially in terms of IPsec.
