Hello, the IPsec module doesn't honour the left/right subnets configuration keywords
e.g.
leftsubnets={a.b.c.d/nm w.x.y.z/nm}
If you configure it manually, showing the ipsec tunnel details breaks the .conf file even not saving any change.
Regards
Riccardo
Sample ipsec.conf (names has been changed to protect the innocent)
conn idc-vmtest
auth=esp
authby=secret
auto=start
ikelifetime=24h
keylife=24h
left=a.b.c.198
leftid=@vpn.cool.firm
leftnexthop=a.b.c.193
leftsubnets={192.168.77.0/24 192.168.83.0/24 192.168.84.0/24 192.168.80.0/24}
pfs=yes
right=x.y.z.94
rightid=x.y.z.94
rightnexthop=x.y.z.1
rightsubnet=10.142.10.0/24
type=tunnel
That's correct, currently only the leftsubnet / rightsubnet directives are supported.
OK, could be possible to let webmin ignore those directives without breaking existing (and working) configurations?
Should I create a new Feature Request to support the new directive?
Many thanks
Riccardo