Closed felixtech-msp closed 5 months ago
That's a configuration issue. Look at how lifetimes and rekeying works. The IPsec logs are also not empty, they log everything.
I have exactly followed the official documentation on how to set up an IPsec site-to-site tunnel. I shouldn't have to deal with some undocumented crap. Also the logs are empty. That is clearly stated by the message "No results found!" in the "VPN: IPsec: Log File" even though a lot of stuff is set to "Highest" logging within the Advanced Settings. Your attitude is not helping at all...
Feel free to open a new ticket and try to stay friendly and open.
when seeking commercial support, best use proper channels.
Important notices
Before you add a new report, we ask you kindly to acknowledge the following:
Describe the bug
There are two OPNsense boxes (both running OPNsense 24.4-amd64 Business Edition) and both have a IPsec connection to each other with the following settings:
Phase 1
Phase 2 Mode: Tunnel IPv4 Local Network Type: LAN subnet Remote Network Type: Network (/24 subnet of other site) Protocol: ESP Encryption algorithms: AES256 Hash algorithms: SHA512
All other settings are unchecked/default.
The tunnel stays up for several hours and then stops working. On site A everything appears to be fine (Status Overview states Phase 1 connected and Phase 2 installed). On site B Phase 1 is stated as disconnected. Reconnecting doesn't fix anything. The IPsec service has to be restarted on both sites and then it immediately works again.
Expected behavior
The tunnel stays up forever.
Relevant log files
IPsec Logs stay empty. There is no log output which would help diagnose the issue.
Environment
Software version used and hardware type if relevant, e.g.:
OPNsense 24.4-amd64 Business Edition Both sites use official OPNsense hardware