IPSEC Missing Under Firewall Rules

Started by mark0987, January 04, 2025, 11:44:30 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions
January 04, 2025, 11:44:30 PM
This is a information reply to an archived post ... https://forum.opnsense.org/index.php?topic=28326.0

I can confirm the behavior of IPSEC rules disappearing and not being used.

In my situation I setup a legacy site to site VPN.
The VPN was up and functioning normally with IPSEC rules in place.
I disabled the VPN to troubleshoot a CARP/VHID issue.
When I re-enabled the VPN, the VPN came up but traffic would not pass. At this point i discovered the the IPSEC section of firewall rules was not visible. More importantly there were valid rules in place that were not being processed by the firewall.
The rules were hidden on the primary and backup firewalls. Rebooting the backup firewall made the rules visible on the backup firewall.
Rebooting the primary firewall made the rules both visible and active.

Posting this for information, in case it helps someone else.

January 05, 2025, 12:34:16 AM #1
Many of the automated rules are a bit flaky when altered. Try switching DHCP servers a few times and the ruleset will become unhappy.
January 05, 2025, 12:34:46 AM #2
Not automated rules.
Print
Go Up Pages1
User actions