Clients disconnecting from PPTP cause states to reset
-
I have an odd issue with Pfsense 2.0 (built on Mon May 9 03:45:21 EDT 2011 ).
We have a pfsense box with two lans and terminates pptp vpns for some of our employees.Anytime one of our employees disconnects from the vpn every connection going through the firewall is dropped and any other active vpn sessions are dropped (almost like the states were reset). I have not found anything in the logs that would be of any use.
Has anyone ran into or heard of this issue before?
Thanks in advance!
Jeremy
-
I found this post which fixed the issue we are having:
http://forum.pfsense.org/index.php/topic,34250.0.html -
I found this post which fixed the issue we are having:
http://forum.pfsense.org/index.php/topic,34250.0.htmlWhich post specifically fixed it for you, reply #3?
-
Yes, changing "/sbin/pfctl -b $3 -b $4" to "/sbin/pfctl -b $4 -b $5" in /usr/local/sbin/vpn-linkdown fixed the problem I was having.
-
Must not be the same issue I'm seeing. I can completely comment out the pfctl line in vpn-linkdown and all my IPsec VPNs still drop after a PPTP disconnection.
FWIW - I did log all 5 arguments passed into the script and got this:
logout,pptpd0,inet,x.x.x.x/32,y.y.y.y,test
where x.x.x.x is the firewall's WAN address and y.y.y.y is the PPTP client's address.
I tried to figure out what the -b option to pftctl does, but it appears to be specific to pfsense - anyone know?