"reset vpn ipsec-peer" doesn't work with named peers
Closed, ResolvedPublicBUG
Actions

Assigned To

Authored By

	dmbaturin
	Mar 14 2020, 8:56 AM

Description

Tl;dr: if you do "set vpn ipsec site-to-site peer @mypeer", you cannot do "run reset vpn ipsec-peer @mypeer".

That's because the "@" symbol is just a mark for VyOS that peer name is not its address, and doesn't actually appear in StrongSWAN configs, but the reset script wrongly assumes otherwise.

Details

Difficulty level: Easy (less than an hour)
Version: 1.2.4
Why the issue appeared?: Will be filled on close
Is it a breaking change?: Perfectly compatible

Event Timeline

dmbaturin created this task.Mar 14 2020, 8:56 AM

pasik added a subscriber: pasik.Mar 14 2020, 10:08 PM

syncer closed this task as Resolved.Mar 15 2020, 10:26 PM

syncer claimed this task.

syncer triaged this task as Normal priority.

syncer moved this task from Need Triage to Finished on the VyOS 1.3 Equuleus board.

syncer moved this task from Needs Triage to Finished on the VyOS 1.2 Crux (VyOS 1.2.5) board.

dmbaturin removed a project: VyOS 1.3 Equuleus.Sep 10 2021, 2:34 PM

"reset vpn ipsec-peer" doesn't work with named peersClosed, ResolvedPublicBUGActions

Description

Details

Event Timeline

"reset vpn ipsec-peer" doesn't work with named peers
Closed, ResolvedPublicBUG
Actions