[Openswan dev] DPD functionality and interoperability of openswann

[IHSAN TURKMEN]

Hi..

I have upgraded Openswan to the latest release 2.4.0  , and still my dead 
tunnels do not get up unless manually triggered . I am suspicious if DPD 
is doing its job or not..  I want to see R_U_THERE_ACK an R_U_THERE 
messeges in syslog to be sure of DPD functionality, however no messeges 
are loged at all ragarding DPD  . The VPN gateway at the other end of the 
tunnel is a Juniper M20 VPN GGSN concentrator. I don't know if they are 
interoperable or not.  I would appreciate your critics about the above 
mentioned questions.

Best regards..

----------------------------------------------------------------------------------------------------
config setup
        interfaces=ipsec0=eth1
        klipsdebug=all
        plutodebug=all
.................................

conn Turkcell
    type=tunnel
    ..........................
    ..............................
   ..................................
    authby=secret
    auto=start
    dpddelay=30
    dpdtimeout=120
    dpdaction=restart

------------------------------------------------------------------------------------------------------------------------------------------------------------
[root at firewall root]# ipsec auto --up Turkcell
117 "Turkcell-Radius" #111: STATE_QUICK_I1: initiate
003 "Turkcell-Radius" #111: ignoring informational payload, type 
IPSEC_RESPONDER_LIFETIME
004 "Turkcell-Radius" #111: STATE_QUICK_I2: sent QI2, IPsec SA established 
{ESP=>0x347ef53d <0xc5ebb449 xfrm=3DES_0-HMAC_SHA1 NATD=none DPD=enabled}




İhsan Türkmen
Hedef Alliance Holding A.Ş.
Bilgi Sistemleri Direktörlüğü

Namık Kemal Cad. Göztepe Mah.
Karanfil Sok. No: 62
34550 Bağcılar / İstanbul/TR
Tel : +90 (212) 445 50 95
Fax: +90 (212) 445 97 54
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.openswan.org/pipermail/dev/attachments/20051021/29cadb32/attachment.htm