IKEv1 VPN fails to connect if Network Extension is enabled?

App & System Services Networking
Shay39 OP
Created Jun ’20
Replies 4
Boosts 0
Views 742
Participants 4
Hi guys,

Does anyone fail to connect IKEv1 (Cisco IPSec) VPN when using the "filtering network traffic" sample code?

I find that, if the SimpleFirewall is enabled, IKEv1 VPN will fail to connect. If SimpleFirewall is enabled after connecting VPN, no application will establish network connection (all TCP/UDP/ICMP will be dropped).

Is this expected behavior (that IKEv1 VPN is not compatible with data-filter)?

ref FB7742493

Best regards,
Shay
Replies  4
Boosts  0
Views  742
Participants  4
Shay39 OP
Jun ’20
I forgot to mention that, I reproduced this issue on macOS 10.15.5 and 10.15.6 beta.
0
DTS Engineer OP
Apple
Jun ’20
I vaguely remember seeing someone else complaining about this but I wasn’t able to track down the bug number )-:

Is this expected behavior (that IKEv1 VPN is not compatible with data-filter)?

No.

ref FB7742493

Thanks!

Share and Enjoy

Quinn “The Eskimo!” @ DTS @ Apple
let myEmail = "eskimo" + "1" + "@apple.com"

WWDC runs Mon, 22 Jun through to Fri, 26 Jun. During that time all of DTS will be busy with conference duties.
0
Engineer OP
Apple
Jun ’20
Please file a bug report with reproduction steps and sysdiagnose output. Thankyou!
0
Jacy_Jiang OP
Jun ’20
Hi guys,

I checked this and it can be reproduced on Big Sur(beta), too.

0
IKEv1 VPN fails to connect if Network Extension is enabled?
First post date Last post date
 
 
Q