diff options
| author | Michele Di Maria <michele@nt2.it> | 2013-03-15 10:13:48 +0100 |
|---|---|---|
| committer | Michele Di Maria <michele@nt2.it> | 2013-03-15 10:13:48 +0100 |
| commit | 1bad10259aff96ff7a2248e5b173f0c3fc35b025 (patch) | |
| tree | bf99f26bc231182994b79b8ee36ca2a5346ac6ea | |
| parent | d632dd5aa9f4809e187475c367f3f1eaf444d8c3 (diff) | |
| download | pfsense-1bad10259aff96ff7a2248e5b173f0c3fc35b025.zip pfsense-1bad10259aff96ff7a2248e5b173f0c3fc35b025.tar.gz | |
Fixes IPSec Status for natted tunnels
See http://redmine.pfsense.org/issues/2884 for details.
Thanks, Michele
| -rw-r--r-- | etc/inc/ipsec.inc | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/etc/inc/ipsec.inc b/etc/inc/ipsec.inc index 9ad3e4a..2d5c1a7 100644 --- a/etc/inc/ipsec.inc +++ b/etc/inc/ipsec.inc @@ -354,7 +354,7 @@ function ipsec_phase2_status(& $spd,& $sad,& $ph1ent,& $ph2ent) { if( ipsec_lookup_ipsec_sa($spd,$sad,"out",$loc_ip,$rmt_ip,$loc_id,$rmt_id)) { if (empty($ph2ent['natlocalid']) && ipsec_lookup_ipsec_sa($spd,$sad,"in",$rmt_ip,$loc_ip,$rmt_id,$loc_id)) return true; - else if (!empty($ph2ent['natlocalid']) && ipsec_lookup_ipsec_sa($spd,$sad,"in",$rmt_ip,$natloc_id,$rmt_id,$natloc_id)) + else if (!empty($ph2ent['natlocalid']) && ipsec_lookup_ipsec_sa($spd,$sad,"out",$loc_ip,$rmt_ip,$loc_id,$rmt_id)) return true; } |
