Author Topic: Gateway not working anymore in routed IPsec (Azure) (Read 12241 times)

alh · « **on:** April 30, 2021, 07:08:26 pm »

After upgrading to 21.5 the gateway setup on the IPsec interface as described in this manual

https://docs.opnsense.org/manual/how-tos/ipsec-s2s-route-azure.html

does not work anymore. The error message is:

Code: [Select]

Cannot add IPv4 Gateway Address because no IPv4 address could be found on the interface.
However, I have access to the remote network and all but I do need the gateway for the static route no?

mimugmail · « **Reply #1 on:** April 30, 2021, 07:54:00 pm »

Screenshots of P1 and P2 please

alh · « **Reply #2 on:** April 30, 2021, 10:38:55 pm »

Here you go, if I understood correctly Phase 1

alh · « **Reply #3 on:** April 30, 2021, 10:39:17 pm »

Phase 2

alh · « **Reply #4 on:** April 30, 2021, 10:40:45 pm »

And the error message.

mimugmail · « **Reply #5 on:** May 01, 2021, 06:46:00 am »

P1 use start immediate and check if the Tunnel comes up in general

alh · « **Reply #6 on:** May 01, 2021, 11:12:38 am »

The tunnel comes up fine and I can ping the virtual machines on Azure. In the route I find the linked gateway and the gateway itself a bit strange...

mimugmail · « **Reply #7 on:** May 01, 2021, 12:42:04 pm »

So does it Work or not? Confused

alh · « **Reply #8 on:** May 01, 2021, 01:10:55 pm »

It does somehow work (did not dare to reboot) but why is my gateway "defunct" and why can I not add an IP address to it anymore?

fog · « **Reply #9 on:** May 06, 2021, 08:42:11 pm »

I have the same issue with routed ipsec between two OPNSense Firewalls:

If I want add a IP to the Gateway for the Ipsec Interface I get only:

The following input errors were detected:

Cannot add IPv4 Gateway Address because no IPv4 address could be found on the interface.

If I leave the IP empty the Gateway is defunct.

How can I add a Gateway for routed ipsec?

mimugmail · « **Reply #10 on:** May 06, 2021, 09:43:11 pm »

Screenshots please.

fog · « **Reply #11 on:** May 07, 2021, 12:36:45 am »

I can not add the Gateway.

See step 5 from https://docs.opnsense.org/manual/how-tos/ipsec-s2s-route.html#step-5-define-gateways

Possible it is only a problem in the GUI? Can I add a Gateway in the shell with a command?

mimugmail · « **Reply #12 on:** May 07, 2021, 04:27:51 pm »

Sceenshot of P1 and P2 please

fog · « **Reply #13 on:** May 07, 2021, 04:35:43 pm »

solved by:
opnsense-revert -r 21.1 strongswan
opnsense-revert -r 21.1 opnsense

Now I can add the gateway with ip again.

mimugmail · « **Reply #14 on:** May 07, 2021, 05:07:08 pm »

It would more help to test reverting only opnsense and not strongswan and then go back version to version to see which one is affecting. Then the devs can find the commit and fix the error

Author Topic: Gateway not working anymore in routed IPsec (Azure) (Read 12241 times)

alh

Gateway not working anymore in routed IPsec (Azure)

mimugmail

Re: Gateway not working anymore in routed IPsec (Azure)

alh

Re: Gateway not working anymore in routed IPsec (Azure)

alh

Re: Gateway not working anymore in routed IPsec (Azure)

alh

Re: Gateway not working anymore in routed IPsec (Azure)

mimugmail

Re: Gateway not working anymore in routed IPsec (Azure)

alh

Re: Gateway not working anymore in routed IPsec (Azure)

mimugmail

Re: Gateway not working anymore in routed IPsec (Azure)

alh

Re: Gateway not working anymore in routed IPsec (Azure)

fog

Re: Gateway not working anymore in routed IPsec (Azure)

mimugmail

Re: Gateway not working anymore in routed IPsec (Azure)

fog

Re: Gateway not working anymore in routed IPsec (Azure)

mimugmail

Re: Gateway not working anymore in routed IPsec (Azure)

fog

Re: Gateway not working anymore in routed IPsec (Azure)

mimugmail

Re: Gateway not working anymore in routed IPsec (Azure)