Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    WARNING: pseudo-random number generator used for IPsec processing

    Scheduled Pinned Locked Moved 2.0-RC Snapshot Feedback and Problems - RETIRED
    3 Posts 3 Posters 5.2k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • D
      Darkk
      last edited by

      I get this on my PfSense 2.0 console screen whenever it first makes a IPsec connection:

      WARNING: pseudo-random number generator used for IPsec processing

      Should I be concerned about it or it's just largely cosmetic?

      I am using the 2.0-RC1 (i386) built on Mon Mar 28 16:37:49 EDT 2011 snapshot but been seeing this for a month or so now with previous snapshots.

      Darkk

      1 Reply Last reply Reply Quote 0
      • C
        cmb
        last edited by

        You've always been seeing that, it's been around in FreeBSD for as long as IPsec has, over a decade. You don't have a true random number generator so your IPsec may be weaker than if you had one. In practice, ignore it, nobody is going to go to the extent of attempting to crack that for what you have on your network (there are much easier and cheaper ways to get it).

        1 Reply Last reply Reply Quote 0
        • jimpJ
          jimp Rebel Alliance Developer Netgate
          last edited by

          And the obligatory XKCD on the topic…

          http://xkcd.com/538/

          Remember: Upvote with the 👍 button for any user/post you find to be helpful, informative, or deserving of recognition!

          Need help fast? Netgate Global Support!

          Do not Chat/PM for help!

          1 Reply Last reply Reply Quote 0
          • First post
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.