Hi,
I just upgraded from 19.7.10 to 20.1 and I think the web gui for IPSec Tunnel Settings is wrong.
Before Phase2 was a 'sub' of Phase1. Now I can not see that this Phase2 is part from Phase1
(https://www.von-der-salierburg.de/download/IPSec_20200131.png)
Also now I get an error when I use ASN.1 Distinguished name.
CN=bla, OU=xyz, ...
The = are generating this error now and strongSwan is not starting
In 19.7.10 this was not the case. But I don't know if it is working, because I'm just working on getting a connection. If I use " around, strongSwan is starting. But I don't know if this is correct.
It is not only correct, also if you installs 20.1 version from "zero" you cannot configure IPSEC VPN, as it lacks "show 0 Phase 2 entries"
I am installing new machines with latest 20.1 version and when i try to configure IPsec VPN, i can`t do it because i donĀ“t have the option.
I also see in log a charon error
Phase 1 and Phase 2 seems to be on the same level without needing to expand. Adding Phase and Phase 2 still works for me.
Another thing, IPSEC Pane looks horrible with Cicada theme.
> Another thing, IPSEC Pane looks horrible with Cicada theme.
not only horrible, in fact unusable as active phase1 entries are displayed in white on white background
WebGUI is also broken in FRR package, in BGP Diagnostics: https://forum.opnsense.org/index.php?topic=15748.0
Lots of broken stuff, huh? If only there was a bug tracker to report this too. ;)
Cheers,
Franco