• Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login
Netgate Discussion Forum
  • Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login

21.02.2-RC IPSEC Status Widget

Scheduled Pinned Locked Moved 21.02.2/2.5.1 Snapshots (Retired)
5 Posts 4 Posters 975 Views
Loading More Posts
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • T
    tve
    last edited by Mar 19, 2021, 7:37 PM

    IPSEC between two DDNS hosts with FQDN identifiers works again and Status/IPSEC pages is also ok. However dashboard widget for IPSEC shows incorrect status:
    09f92424-13d1-4a2b-a53e-57da0637520c-image.png
    ff0ff11c-2fec-4996-aaad-ae691c5c5852-image.png
    All three tunnels are up and working fine.

    1 Reply Last reply Reply Quote 0
    • J
      jimp Rebel Alliance Developer Netgate
      last edited by Mar 19, 2021, 7:42 PM

      Got a little more info about how that tunnel is setup?

      Is it IKEv1 or IKEv2?
      Split connections on or off?
      VTI or tunnel mode?

      Remember: Upvote with the 👍 button for any user/post you find to be helpful, informative, or deserving of recognition!

      Need help fast? Netgate Global Support!

      Do not Chat/PM for help!

      T 1 Reply Last reply Mar 19, 2021, 8:08 PM Reply Quote 0
      • T
        tve @jimp
        last edited by tve Mar 19, 2021, 8:23 PM Mar 19, 2021, 8:08 PM

        @jimp Two IKEv1 tunnels, first has 1 P2 in tunnel mode, the other 2 P2 also in tunnel mode. Sorry, I could not find Split connection setting.

        Other ends are also pfSense hosts, SG-1000 runs still on 2.4.5-RELEASE-p1 and SG-4860 runs on 21.02-RELEASE, which has broken IPSEC status widged and status page. All three firewalls have DDNS setup on WAN and tunnels are negotiated with Distinguished name. (Love this feature)

        V 1 Reply Last reply Mar 26, 2021, 10:07 PM Reply Quote 0
        • L
          l0rdrav3n
          last edited by l0rdrav3n Mar 22, 2021, 6:54 PM Mar 22, 2021, 6:52 PM

          My widget does the same. My tunnels are actually UP and i can traverse them, but they all report from the widget as down.

          2.5.0-RELEASE (amd64)
          built on Tue Feb 16 08:56:29 EST 2021
          FreeBSD 12.2-STABLE

          1 Reply Last reply Reply Quote 0
          • V
            viktor_g Netgate @tve
            last edited by Mar 26, 2021, 10:07 PM

            @tve said in 21.02.2-RC IPSEC Status Widget:

            @jimp Two IKEv1 tunnels, first has 1 P2 in tunnel mode, the other 2 P2 also in tunnel mode. Sorry, I could not find Split connection setting.

            Fixed in the latest snapshot,
            see https://redmine.pfsense.org/issues/11435#note-6

            1 Reply Last reply Reply Quote 1
            1 out of 5
            • First post
              1/5
              Last post
            Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.
              This community forum collects and processes your personal information.
              consent.not_received