[2.1] site2site vpn stops to work after Multi VPN server firmware upgrade
-
What do your firewall logs show? Where is this traffic getting blocked if at all?
What do the traceroute logs show?
-
Here It's the traceroute…
I did not look to the firewall logs... as I thought no block was on! Tomorrow I'll take a look...
-
This morning I have checked up the fw logs….
No block at all... -
I have no experience with doing a site to site over a MultiWAN setup but I would just make sure that you have 1194 opened up on both interfaces. I would also switch to UDP as TCP could be a source of your problems. Just thinking out loud could there be a problem traffic leaving one WAN interface and then coming back on Anohter? If you disable one of your WAN interfaces does this solve your issues. Is something that is even possible for you to do?
-
No way… at the moment I do not use the 2nd WAN in vpn conf (just internet conn). And the vpn is up and running (=> no fw problem) hence as I stated above disabling just the "multigw" allow vpn to "ping"…
Indeed there is something wrong on routing in 2.1-RELEASE when vpn is coupled with multigw.I don't know if there is something other we can do....
I hope in some admin/developer help...
Pleeeeeeeeeeese! :)Otherwise I (we?) have just to wait 2.1.1...
-
Summarizing I thought It can be only a bug: how is possible routing differently 2 nets with the same gw?
finally… I submit a bug on https://redmine.pfsense.org/issues/3309
I hope this help...
-
[SOLVED]
Fix will be available on 2.1.1