1
21.1 Legacy Series / current state of IPSec VTI related to lost TCP traffic - open FreBSD Bug #242744
« on: February 12, 2021, 10:10:45 am »
hello,
AFAIK ipsec VTI is usable in opnsense but there still seems to be a major open bug:
IPSec in transport mode between FreeBSD hosts blackholes TCP traffic
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=242744
the corresponding opnsense issue has been closed due to inactivity 03-2020
https://github.com/opnsense/core/issues/3674
... only in transport mode? i think this happened to us in tunnel mode...
... shouldn't this bug be listed as known issue? or is there a workaround implemented in opnsense by now?
AFAIK ipsec VTI is usable in opnsense but there still seems to be a major open bug:
IPSec in transport mode between FreeBSD hosts blackholes TCP traffic
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=242744
the corresponding opnsense issue has been closed due to inactivity 03-2020
https://github.com/opnsense/core/issues/3674
... only in transport mode? i think this happened to us in tunnel mode...
... shouldn't this bug be listed as known issue? or is there a workaround implemented in opnsense by now?