Ipsec-tools fixes since release of 0.8.0 a year ago
-
pfsense may want to consider including several bugfixes that have been commited to ipsec-tools since the 0.8.0 release a year ago.
Check:
http://cvsweb.netbsd.org/bsdweb.cgi/src/crypto/dist/ipsec-tools/src/?sortby=date&only_with_tag=MAIN#dirlist -
didn't you already make a ticket in redmine for this?
I remember seeing one.
-
Yep, but it has been on redmine for 3+ weeks without receiving any response, so I sent this friendly reminder :)
Also, since I assume more people watch the forum than check redmine, perhaps some pfsense user who has updated his ipsec-tools can tell us whether it actually solves known issues, like the IPsec mobile functionality.
-
It's not forgotten, it's on the queue. Patience please.
the emphasis so far has been work on IPv6, of which there is enough to do and holds back release.
When that's done we'll move down from there.
-
we tread very lightly with ipsec-tools, for everything that's fixed something else breaks at least in the past. not sure we'll touch it at all for 2.1 given we're on a short timeline, but maybe.
-
Chris, I was thinking that perhaps a pfsense build with the latest ipsec-tools cvs can be offered as a beta-testing option, so that any pfsense users who reverted back to 1.2.3 due to ipsec issues can try it out… (I'm thinking about users like alexandrnew who wrote here that he's using pfsense 1.2.3 IPsec mobile with more than 400 clients)