OPNsense Forum

Archive => 16.7 Legacy Series => Topic started by: mwiora on December 14, 2016, 11:06:56 pm

Title: There is a Phase 2 using IPv4, you cannot use IPv6.
Post by: mwiora on December 14, 2016, 11:06:56 pm: Hi all,

I've set up an IPv6 phase 1 connection, which contains two phase 2 entries.
One of them is IPv6, the other IPv4.

I have a stable connection for something 20 minutes up to 6 hours.
After that time (variable) the tunnel is still up and running, but no more packets are going through the tunnel..... Until I restart the IPsec strongswan service on one side (the other side remains untouched)...

I've set the log to "control" in all parts - I'll update the thread as soon as I found something interesting...

I suspected now that the dead-peer-connection is causing the issues and I wanted to disable it in phase 1, but I'm getting "There is a Phase 2 using IPv4, you cannot use IPv6.".

Why is it working anyway? For at least this limited time. Shouldn't it be configurable anyway?

cheers,
Matthias

SMF 2.0.19 | SMF © 2021, Simple Machines
Privacy Policy