OPNsense Forum

Archive => 24.7, 24.10 Legacy Series => Topic started by: mark0987 on January 04, 2025, 11:44:30 PM

Title: IPSEC Missing Under Firewall Rules
Post by: mark0987 on January 04, 2025, 11:44:30 PM
This is a information reply to an archived post ... https://forum.opnsense.org/index.php?topic=28326.0

I can confirm the behavior of IPSEC rules disappearing and not being used.

In my situation I setup a legacy site to site VPN.
The VPN was up and functioning normally with IPSEC rules in place.
I disabled the VPN to troubleshoot a CARP/VHID issue.
When I re-enabled the VPN, the VPN came up but traffic would not pass. At this point i discovered the the IPSEC section of firewall rules was not visible. More importantly there were valid rules in place that were not being processed by the firewall.
The rules were hidden on the primary and backup firewalls. Rebooting the backup firewall made the rules visible on the backup firewall.
Rebooting the primary firewall made the rules both visible and active.

Posting this for information, in case it helps someone else.

Title: Re: IPSEC Missing Under Firewall Rules
Post by: pfry on January 05, 2025, 12:34:16 AM
Many of the automated rules are a bit flaky when altered. Try switching DHCP servers a few times and the ruleset will become unhappy.
Title: Re: IPSEC Missing Under Firewall Rules
Post by: mark0987 on January 05, 2025, 12:34:46 AM
Not automated rules.