OPNsense Forum

Archive => 19.7 Legacy Series => Topic started by: janne on September 10, 2019, 10:04:07 am

Title: IPSec
Post by: janne on September 10, 2019, 10:04:07 am

Hi.
Are there any problems with IPSec in the 19.7.3 version? Have tried a lot of changes but it does not want to work. It worked effortlessly on ver. 16.7

Title: Re: IPSec
Post by: janne on September 10, 2019, 10:06:45 am

Date   Message
Sep 10 09:59:34   charon: 15[CFG] received stroke: route 'con1'
Sep 10 09:59:34   charon: 15[CFG] added configuration 'con1'
Sep 10 09:59:34   charon: 15[CFG] received stroke: add connection 'con1'
Sep 10 09:59:34   charon: 16[CFG] deleted connection 'con1'
Sep 10 09:59:34   charon: 16[CFG] received stroke: delete connection 'con1'
Sep 10 09:59:34   charon: 15[CFG] received stroke: unroute 'con1'
Sep 10 09:59:34   charon: 16[CFG] rereading crls from '/usr/local/etc/ipsec.d/crls'
Sep 10 09:59:34   charon: 16[CFG] rereading attribute certificates from '/usr/local/etc/ipsec.d/acerts'
Sep 10 09:59:34   charon: 16[CFG] rereading ocsp signer certificates from '/usr/local/etc/ipsec.d/ocspcerts'
Sep 10 09:59:34   charon: 16[CFG] rereading aa certificates from '/usr/local/etc/ipsec.d/aacerts'
Sep 10 09:59:34   charon: 16[CFG] rereading ca certificates from '/usr/local/etc/ipsec.d/cacerts'
Sep 10 09:59:34   charon: 16[CFG] expanding file expression '/usr/local/etc/ipsec.secrets.opnsense.d/*.secrets' failed
Sep 10 09:59:34   charon: 16[CFG] loaded IKE secret for 83.233.10.58
Sep 10 09:59:34   charon: 16[CFG] loading secrets from '/usr/local/etc/ipsec.secrets'
Sep 10 09:59:34   charon: 16[CFG] rereading secrets

Title: Re: IPSec
Post by: mimugmail on September 10, 2019, 07:19:31 pm

There is no error in this log.

Title: Re: IPSec
Post by: janne on September 13, 2019, 09:11:05 am

Hi.I had to read it properly so I found the error.I got disable NAT traversal and created a firewall rule.This was the difference from the older version.Shouldn't the program create these things when setting up IPsec?Thanks.