Strongswan not starting on 22.1

Started by jgrande, February 01, 2022, 06:59:01 AM

Previous topic - Next topic
Print
Go Down Pages 1 2
User actions
April 05, 2022, 09:46:18 AM #15
Hi,

any solution to this? i just created a new opnsense install and trying to setup a s2s ipsec connection. Starting ipsec by hand tells me there is not configuration file in "/usr/local/etc/strongswan.oipensense.d/*.conf". Log is completly empty.

I checked ciphers and i use aes-gcm-256 and sha256, that should be supported on FreeBSD 13.x. This connection was created on the latest version of OPNsense.
May 09, 2022, 05:46:39 PM #16
Any update on this?  I upgraded to 22.1 but the IPsec UI is not writing any configuration files.

As a result my connection cannot offer a proposal during the INIT phase.
May 10, 2022, 04:56:16 PM #17 Last Edit: May 10, 2022, 05:14:26 PM by agirling
For future readers, my issue was related to IPsec being used with CARP interfaces.  This has been patched and in the next release cycle.

https://github.com/opnsense/core/commit/4080345a597fbc55c02256996f7ba3ccee78ae49
September 29, 2022, 05:28:01 PM #18
Quote from: proctor on March 29, 2022, 12:55:57 PM
Quote
Shame on me. - Enable IPsec was not checked...
The web designer is culpable here.  I, having the same problem you were, just spent almost an hour looking for this check box.  It's at the bottom of the "tunnel settings" page which isn't at all obvious.
March 13, 2023, 05:23:15 PM #19
Quote from: proctor on March 29, 2022, 12:55:57 PM
Shame on me. - Enable IPsec was not checked...
Hi !

I was creating an IPSec macOS Mobile setup*, and the same shame : forgot to turn it on ;-)

*https://github.com/thomergil/opnsense-ipsec-vpn
Print
Go Up Pages 1 2
User actions