"
I will test with your recommended setting and will provide feedback.
Thank you!
Thank you!
This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.
Pages1
#1
Virtual private networks / Re: IPSec Connections VPN having Child SA Issue
September 26, 2025, 10:09:28 PM #2
Virtual private networks / Re: IPSec Connections VPN having Child SA Issue
May 18, 2025, 02:32:31 PMQuote from: guyp2k on May 18, 2025, 05:47:07 AMDid you ever get this reolved, same issue and ended up having child objects for each.Unfortunately no, I have tried separate child object and only first child obj will connect. If you got it working can you provide some guidance. Currently I have legacy tunnel for one child obj and new connections for the second.
Thank you
#3
Virtual private networks / Re: IPSec Connections VPN having Child SA Issue
May 06, 2025, 11:09:22 PM
Can anyone please provide some help?
#4
Virtual private networks / Re: IPSec Connections VPN having Child SA Issue
May 06, 2025, 06:49:09 PM
I already tried that but same issue, only the first IP gets connected.
#5
Virtual private networks / IPSec Connections VPN having Child SA Issue
May 06, 2025, 05:56:28 PM
Hello,
I'm running the latest release of OPNsense v25.1.5. I have 4 tunnels configured using the legacy IPSec and was able to transferred them over to the new Connections and disabled the tunnels in legacy.
One of the tunnel I'm having issues which has two child objects
My FW: "192.168.2.5/32"
Other FW: "10.168.9.1/32 and 172.2.2.1/32"
I can only connect to the first Child "10.168.9.1" if I change the config and use "172.2.2.1" as first Child it will connect and "10.168.9.1" will be dropped. I have tried adding both tunnel IP into 1 child object but still the same issue only the first will connect.
I don't have this issue when using the legacy tunnel which is nearing the EOL.
For time being I have enabled legacy for "172.2.2.1" and connection for the "10.168.9.1"
Can someone please provide some help. I'm lost.
I'm running the latest release of OPNsense v25.1.5. I have 4 tunnels configured using the legacy IPSec and was able to transferred them over to the new Connections and disabled the tunnels in legacy.
One of the tunnel I'm having issues which has two child objects
My FW: "192.168.2.5/32"
Other FW: "10.168.9.1/32 and 172.2.2.1/32"
I can only connect to the first Child "10.168.9.1" if I change the config and use "172.2.2.1" as first Child it will connect and "10.168.9.1" will be dropped. I have tried adding both tunnel IP into 1 child object but still the same issue only the first will connect.
I don't have this issue when using the legacy tunnel which is nearing the EOL.
For time being I have enabled legacy for "172.2.2.1" and connection for the "10.168.9.1"
Can someone please provide some help. I'm lost.
Pages1
