Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search

    SG-5100 21.02 IPsec tunnels duplicate/incorrect status

    IPsec
    2
    5
    82
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • B
      brians last edited by

      SG-5100 upgrade to 21.02. I have about 25 IPsec tunnels. I only have maybe 5-10 up at anytime as I use these to connect/support remote networks and do not normally keep all up.
      After upgrade I notice IPsec status is slow to refresh so I start disabling tunnels until it is fast again. I notice that after enabling one by one that some tunnels in Status, IPsec show green disconnected button at bottom but are actually connected and have another IPsec ID. These tunnels seem to cause the slowness of the UI status. If I disconnect one of those IDs and then reconnect at bottom it connects again but still shows this other ID instead. Some tunnels are OK and do not exhibit this behaviour. I have tried deleting these problem tunnels and recreating the IPsec on each end and still same issue. Any ideas why? I am thinking maybe something got corrupt and a backup/restore may work but I have to wait until weekend to do.

      1 Reply Last reply Reply Quote 0
      • jimp
        jimp Rebel Alliance Developer Netgate last edited by

        To ensure you have all of the current known and fixed IPsec issues corrected, You can install the System Patches package and then create entries for the following commit IDs to apply the fixes:

        • ead6515637a34ce6e170e2d2b0802e4fa1e63a00 #11435
        • 57beb9ad8ca11703778fc483c7cba0f6770657ac #11435
        • 10eb04259fd139c62e08df8de877b71fdd0eedc8 #11442
        • ded7970ba57a99767e08243103e55d8a58edfc35 #11486
        • afffe759c4fd19fe6b8311196f4b6d5e288ea4fb #11487
        • 2fe5cc52bd881ed26723a81e0eed848fd505fba6 #11488
        B 1 Reply Last reply Reply Quote 0
        • B
          brians @jimp last edited by

          @jimp Thanks, the target version is 2.5 can I use these for 21.02 or are there ones specific to the pfsense+ ?

          1 Reply Last reply Reply Quote 0
          • jimp
            jimp Rebel Alliance Developer Netgate last edited by

            That code should be the same for both

            B 1 Reply Last reply Reply Quote 0
            • B
              brians @jimp last edited by

              @jimp Thanks I applied all six patches and didn't even have to reboot - issue resolved instantly.

              1 Reply Last reply Reply Quote 0
              • First post
                Last post

              Products

              • Platform Overview
              • TNSR
              • pfSense
              • Appliances

              Services

              • Training
              • Professional Services

              Support

              • Subscription Plans
              • Contact Support
              • Product Lifecycle
              • Documentation

              News

              • Media Coverage
              • Press
              • Events

              Resources

              • Blog
              • FAQ
              • Find a Partner
              • Resource Library
              • Security Information

              Company

              • About Us
              • Careers
              • Partners
              • Contact Us
              • Legal
              Our Mission

              We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

              Subscribe to our Newsletter

              Product information, software announcements, and special offers. See our newsletter archive to sign up for future newsletters and to read past announcements.

              © 2021 Rubicon Communications, LLC | Privacy Policy