IPsec mobile clients with 22.1

[atom]

Hello,

I've installed a fresh OPNsense with 22.1.
Then I've tried to enable Mobile Clients according to https://docs.opnsense.org/manual/how-tos/ipsec-rw-srv-mschapv2.html .
Unfortunatly I'm not able to add a phase 2 entry. ( step 3 from the guide )
There is no button "show 0 phase-2 entries".

Regards,
atom

[franco]

Hi,

The button to open a new phase 2 entry is now at the end of the phase 1 entry. Phase 2 are automatically shown below when you click on the respective phase 1 in the table.


Cheers,
Franco

[atom]

Hi Franco,

unfortunantly I can't see any button.

Regards,
atom

[franco]

The "+" in the row of the phase 1 on the right is to create a new phase 2 for it.


Cheers,
Franco

[atom]

Yes, that is possible, but it is far from intuitive. ( like the entire change for ipsec ui in my opinion )

But now I have to submit a remote IP and '%any' is not possible.

Update: screenshot attached

[franco]

You can append "&mobile=true" for now to the URL after opening it and the remote network disappears. We will fix it.


Cheers,
Franco

[atom]

I've tried it this way: /vpn_ipsec_phase2.php?p2index=62177716eeef7&mobile=true , but the remote network is still visible.     :(

[franco]

It only works on initial creation of the phase 2 (after clicking the "+"). Unfortunately these are the rules of the current code and we will be changing them:

https://github.com/opnsense/core/issues/5598


Cheers,
Franco

[atom]

Hi Franco,

I have deleted the entry and added it again, but with "&mobile=true".

Thanks,
atom