Home
Help
Search
Login
Register
OPNsense Forum
»
Archive
»
22.1 Legacy Series
»
Create new site to site IPsec tunnel fails until you reload fw rules
« previous
next »
Print
Pages: [
1
]
Author
Topic: Create new site to site IPsec tunnel fails until you reload fw rules (Read 1443 times)
nzkiwi68
Full Member
Posts: 182
Karma: 20
Create new site to site IPsec tunnel fails until you reload fw rules
«
on:
June 28, 2022, 01:07:33 am »
I have noticed, that when you create a new site to site IPsec VPN tunnel, it simply will not become active.
I have done a reasonable amount of diagnostics and my finding is this:
If you create or modify a firewall rule or alias and save, thereby reloading the firewall rules, the site to site VPN tunnel will then come up.
Whats going on?
I think when you press save on the new IPsec tunnel, the OPNsense is not immediately updating the hidden IPsec allow rules on the WAN interface and/or not reloading the firewall rules and therefore IPsec traffic is blocked until a firewall rules reload is manually done.
Logged
nzkiwi68
Full Member
Posts: 182
Karma: 20
Re: Create new site to site IPsec tunnel fails until you reload fw rules
«
Reply #1 on:
June 29, 2022, 11:57:13 pm »
DEV any comments?
Logged
Patrick M. Hausen
Hero Member
Posts: 6812
Karma: 572
Re: Create new site to site IPsec tunnel fails until you reload fw rules
«
Reply #2 on:
June 30, 2022, 08:03:58 am »
The way to address the developers with a way higher probability of receiving an answer is to open an issue on github. This is the community forum where users try to help each other out. Yes, Franco is joining in occasionally, but please with such a precise diagnose for a possible bug already - please create an issue.
Logged
Deciso DEC750
People who think they know everything are a great annoyance to those of us who do.
(Isaac Asimov)
Print
Pages: [
1
]
« previous
next »
OPNsense Forum
»
Archive
»
22.1 Legacy Series
»
Create new site to site IPsec tunnel fails until you reload fw rules