Page MenuHomeVyOS Platform
People ajgnet

ajgnet (Adam Goldberg)
User

Projects

User does not belong to any projects.

User Details

User Since
Jul 30 2020, 9:40 PM (30 w, 3 d)

Recent Activity
View All

Aug 18 2020

ajgnet added a comment to T2760: In a load-balanced multi-wan configuration with DHCP assigned addresses, IPsec "dhcp-interface" does not work.

Enabling sticky connections had no effect in my testing. The only temporary solution was T2747. Unfortunately, this solution no longer works once the IP address changes on a DHCP-assigned interface.

Aug 18 2020, 12:42 PM · VyOS 1.3 Equuleus

Aug 10 2020

ajgnet added a comment to T2748: "show vpn ike sa" shows state "down" when tunnel is up.

Additionally, sometimes the Peer ID and Local ID are not correctly formatted. for example:

Aug 10 2020, 4:21 PM · VyOS 1.3 Equuleus
ajgnet created T2776: QAT acceleration not working for IPSec AES-128 (CBC) / SHA256 tunnel .
Aug 10 2020, 1:55 AM · VyOS 1.3 Equuleus

Aug 9 2020

ajgnet created T2775: QAT acceleration for OpenVPN.
Aug 9 2020, 4:21 PM · VyOS 1.3 Equuleus

Aug 7 2020

ajgnet added a comment to T2747: "enable-local-traffic" has no effect in load-balancing to redirect local traffic.

Sure thing. Note my configuration contains some table maps that I have set up to route VPN traffic, and certain source IPs through specific interfaces. But there is no effect on the load-balancer when these sections are removed. Thank you.

Aug 7 2020, 4:08 PM · VyOS 1.3 Equuleus

Aug 5 2020

ajgnet added a comment to T2748: "show vpn ike sa" shows state "down" when tunnel is up.

I suspect this could be related to displaying a peer with a hostname that contains a dash, such as, "abc-peer12.dyndns.org." Or, possibly a string matching error getting thrown off by "AES_GCM_16_128/MODP_2048"

Aug 5 2020, 5:38 PM · VyOS 1.3 Equuleus
ajgnet added a comment to T2748: "show vpn ike sa" shows state "down" when tunnel is up.

The IKE SA appears down in your second example?

Aug 5 2020, 5:02 PM · VyOS 1.3 Equuleus

Aug 4 2020

ajgnet created T2760: In a load-balanced multi-wan configuration with DHCP assigned addresses, IPsec "dhcp-interface" does not work.
Aug 4 2020, 10:14 AM · VyOS 1.3 Equuleus

Jul 31 2020

ajgnet created T2748: "show vpn ike sa" shows state "down" when tunnel is up.
Jul 31 2020, 1:55 AM · VyOS 1.3 Equuleus

Jul 30 2020

ajgnet updated the task description for T2747: "enable-local-traffic" has no effect in load-balancing to redirect local traffic.
Jul 30 2020, 11:54 PM · VyOS 1.3 Equuleus
ajgnet created T2747: "enable-local-traffic" has no effect in load-balancing to redirect local traffic.
Jul 30 2020, 11:52 PM · VyOS 1.3 Equuleus