Home
Help
Search
Login
Register
OPNsense Forum
»
Archive
»
23.7 Legacy Series
»
Missing IPSec logs
« previous
next »
Print
Pages: [
1
]
Author
Topic: Missing IPSec logs (Read 1352 times)
9axqe
Full Member
Posts: 201
Karma: 4
Missing IPSec logs
«
on:
September 12, 2023, 01:38:53 pm »
I am attempting to set up an IPSec tunnel to a cloud service, using the new "connections" method. Unfortunately this cloud service does not offer a standard setup guide, only customized ones, for Azure IPSec, Oracle IPSec, GCP, etc.
At the moment, nothing is showing up on the status page, thus I'd like to troubleshoot.
But "Log File" shows absolutely zero entries, so I think I am doing something wrong at a very basic level. Any suggestions?
I configured:
Connection: local IP is my WAN IP, remote IP is IP of cloud provider.
Pool: I configured a single IPv4 (/32) in a pool to test this tunnel first.
Remote Authentication is set to PSK, ID is set to "local identifier" of the PSK configured under "Pre-Shared Keys". Certificates is left empty and I hope the string configured under "Pre-Shared Keys > Pre-Shared Key" is then used (not very clear in UI tbh)
Firewall > Rules > IPSec: I allowed outbound and inbound UDP/500 and UDP/4500 (not sure it's all required, I'm just trying to go for the lowest risk config to get it working first).
Logged
franco
Administrator
Hero Member
Posts: 17668
Karma: 1611
Re: Missing IPSec logs
«
Reply #1 on:
September 12, 2023, 02:59:45 pm »
There was a PHP upgrade issue a while back on the logging settings. Can you navigate to VPN: IPsec: Advanced Settings and check the log levels and save again?
Cheers,
Franco
Logged
9axqe
Full Member
Posts: 201
Karma: 4
Re: Missing IPSec logs
«
Reply #2 on:
September 12, 2023, 03:12:17 pm »
Whatever log level I set under "advanced settings", if I navigate away from the menu and back, it's all set back to "audit"...
Logged
9axqe
Full Member
Posts: 201
Karma: 4
Re: Missing IPSec logs
«
Reply #3 on:
September 15, 2023, 06:00:19 am »
ok, I must have done something very wrong, it doesn't even start anymore after upgrading to 27.3.4.
Still nothing in the IPSec logs so far.
Which logs should I look at to understand why IPSec service cannot start?
Logged
Print
Pages: [
1
]
« previous
next »
OPNsense Forum
»
Archive
»
23.7 Legacy Series
»
Missing IPSec logs