OPNsense
  • Home
  • Help
  • Search
  • Login
  • Register

  • OPNsense Forum »
  • Profile of Oliver »
  • Show Posts »
  • Topics
  • Profile Info
    • Summary
    • Show Stats
    • Show Posts...
      • Messages
      • Topics
      • Attachments

Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.

  • Messages
  • Topics
  • Attachments

Topics - Oliver

Pages: [1]
1
23.1 Legacy Series / VPN > IPSec: Strongswan 5.9.10+ prevents EAP-TLS authentication
« on: March 22, 2023, 03:43:27 pm »
A regression in the eap-tls plugin of Strongswan 5.9.10+ prevents EAP-TLS authentication. The log shows:

Code: [Select]
11[IKE] <con1|2> verification of AUTH payload with EAP MSK failed
Details: https://github.com/strongswan/strongswan/discussions/1613

Remedy: Downgrade to Strongswan 5.9.9_1 via

Code: [Select]
opnsense-revert -r 23.1.1 strongswan
But keep in mind that this version is affected by vulnerability CVE-2023-26463.

Pages: [1]
OPNsense is an OSS project © Deciso B.V. 2015 - 2024 All rights reserved
  • SMF 2.0.19 | SMF © 2021, Simple Machines
    Privacy Policy     | XHTML | RSS | WAP2