IPsec stops forwarding traffic when Captive Portal is enabled

renedk

Hi,

We have a problem similar to the one in https://forum.netgate.com/topic/42230/captive-portal-break-ipsec-tunnels-solved?_=1602674436600

When captive portal is enabled, the IPsec stops working.
I've tried adding the remote subnets in "Allowed IP Adresses", but that didn't help.

Our setup is 2.4.4-RELEASE-p3 in HA setup.

Pointers to where I should start looking in the firewall rules is much appreciated.

Thanks,
René

viktor_g

see https://forum.netgate.com/topic/42230/captive-portal-break-ipsec-tunnels-solved/4?_=1602674436600:

I've specified the remote Nework 192.168.1.0/24 in the "Allowed IP Address" tab in the Captive Portal.

so, you need to put remote IPsec networks to "Allowed IP Address"

renedk

@viktor_g said in IPsec stops forwarding traffic when Captive Portal is enabled:

so, you need to put remote IPsec networks to "Allowed IP Address"

Thank you for taking the time to reply to my post.... but did you even read it before replying?

BR,
René

viktor_g

yeap, I need to be more careful)

Ok, some questions:

1. same issue without HA?
2. "Allowed IP Adresses" direction
3. list of Captive Portal interfaces