Operational Defect Database
BugZero found this defect 1946 days ago.
Data sources
All data on this page is proprietary to BugZero® or gathered from public sources
SonicWall | GEN7-37783
Devices are unable to negotiate IKE using 3rd Party Certificate VPN tunnel when using a certificate of a larger size because the DF flag forbids the fragmentation of the packet involved, causing the packet to never reach the peer gateway.
Last update date:
6/4/2020
Affected products:
NSa 2700
NSa 3700
NSa 4700
NSa 5700
NSa 6700
NSsp 10700
NSsp 11700
NSsp 13700
NSv 270
NSv 470
NSv 870
TZ270
Affected releases:
No affected releases provided.
Fixed releases:
7.0.1-5111
Description:
Devices are unable to negotiate IKE using 3rd Party Certificate VPN tunnel when using a certificate of a larger size because the DF flag forbids the fragmentation of the packet involved, causing the packet to never reach the peer gateway.
