Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    VTI not loading tunnel address after upgrade to 2.7

    Scheduled Pinned Locked Moved
    IPsec
    vti ipsec
    1
    2
    331
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • T
      Topogigio
      last edited by

      Hi,
      I have a VTI tunnel that worked until upgrade di PFS 2.7 from 2.5.2. Now the problem is that the tunnel is UP, and VPN seems ok, but local address (and also remote address) of VTI tunnel, as defined in Phase 2, are not loaded in routing table. So the firewall is not able to ping itself, or the other side of the tunnel. And starting from this, nothing works (the other side may exchange OSPF data, etc. etc.).

      Any idea?
      Rebooting the unit last Friday has fixed the problem, but tomorrow I found it again blocking all my work.

      thanks

      T 1 Reply Last reply Reply Quote 0
      • T
        Topogigio @Topogigio
        last edited by

        @Topogigio the problem persists. After a few days pfSense stops binding the IP address on the established tunnel interface.
        I've started to build a new opnSense gateway, but if there is some pfSense solution I'll be happy

        1 Reply Last reply Reply Quote 0
        • First post
          Last post