Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    IPsec upgrade issue 2.0.3->2.1

    Scheduled Pinned Locked Moved
    2.1 Snapshot Feedback and Problems - RETIRED
    1
    1
    824
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • A
      Andy_
      last edited by

      I just auto-upgraded a router from 2.0.3 to 2.1RC (20130716) and found the vpn tunnel not working any more. The log states "exchange Identity Protection not allowed in any applicable rmconf". I upgraded the peer as well, problem persists.

      Then I disabled the old config, and created a fresh one and voila! everything's up again.

      Examining the config backup files, I found the following:

      • The old config had <peerid_type>peeraddress</peerid_type>, but <peerid_data>was filled anyway with some dns name.
      • the original 2.0.3 config was using main mode, apparently it was switched to agressive automatically.

      Regards,
      Andreas</peerid_data>

      1 Reply Last reply Reply Quote 0
      • First post
        Last post
      Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.