[Openswan Users] ipsec not stopping with init script
Brad Chang
openswan at dotnoc.com
Sun Mar 28 20:35:52 CEST 2004
Hi again,
I have freeswan compiled from source 2.0.4 (debian source) and kernel patched
with the kernel-patch-freeswan (debian again) there is somthing wrong with
ipsec and start stop restart from init script. basically pluto dosnt want to
stop or somthing . I included a bunch of things (logs etc..) here for you to
look at . any help or suggestions would be greatly appreciated :-) thanks alot
vanvpn1:/usr/src/freeswan-2.04/debian# ps aux
USER PID %CPU %MEM VSZ RSS TTY STAT START TIME COMMAND
root 1 0.0 0.1 1492 500 ? S 19:29 0:05 init [2]
root 2 0.0 0.0 0 0 ? SW 19:29 0:00 [keventd]
root 3 0.0 0.0 0 0 ? SWN 19:29 0:00 [ksoftirqd_CPU0]
root 4 0.0 0.0 0 0 ? SW 19:29 0:00 [kswapd]
root 5 0.0 0.0 0 0 ? SW 19:29 0:00 [bdflush]
root 6 0.0 0.0 0 0 ? SW 19:29 0:00 [kupdated]
root 7 2.2 0.0 0 0 ? SW 19:29 3:54 [kjournald]
root 191 0.0 0.2 1540 612 ? S 19:29 0:08 /sbin/syslogd
root 194 0.0 0.4 2084 1204 ? S 19:29 0:02 /sbin/klogd
root 288 0.0 0.2 1520 520 ? S 19:29 0:00 /usr/sbin/inetd
root 296 0.0 0.4 3068 1232 ? S 19:29 0:00 /usr/sbin/sshd
daemon 299 0.0 0.2 1672 620 ? S 19:29 0:00 /usr/sbin/atd
root 302 0.0 0.2 1928 720 ? S 19:29 0:00 /usr/sbin/cron
root 305 0.0 0.1 1484 468 tty1 S 19:29 0:00 /sbin/getty
38400 tty1
root 306 0.0 0.1 1484 468 tty2 S 19:29 0:00 /sbin/getty
38400 tty2
root 307 0.0 0.1 1484 468 tty3 S 19:29 0:00 /sbin/getty
38400 tty3
root 308 0.0 0.1 1484 468 tty4 S 19:29 0:00 /sbin/getty
38400 tty4
root 309 0.0 0.1 1484 468 tty5 S 19:29 0:00 /sbin/getty
38400 tty5
root 311 0.0 0.1 1484 468 tty6 S 19:29 0:00 /sbin/getty
38400 tty6
root 385 0.0 0.7 5920 1840 ? S 19:29 0:00 /usr/sbin/sshd
root 387 0.0 0.5 2448 1312 pts/0 S 19:30 0:00 -bash
root 25343 0.0 0.6 3676 1616 pts/0 R 22:20 0:00 ps aux
vanvpn1:/usr/src/freeswan-2.04/debian# /etc/init.d/ipsec start
ipsec_setup: Starting FreeS/WAN IPsec 2.04...
vanvpn1:/usr/src/freeswan-2.04/debian# ps aux
USER PID %CPU %MEM VSZ RSS TTY STAT START TIME COMMAND
root 1 0.0 0.1 1492 500 ? S 19:29 0:05 init [2]
root 2 0.0 0.0 0 0 ? SW 19:29 0:00 [keventd]
root 3 0.0 0.0 0 0 ? SWN 19:29 0:00 [ksoftirqd_CPU0]
root 4 0.0 0.0 0 0 ? SW 19:29 0:00 [kswapd]
root 5 0.0 0.0 0 0 ? SW 19:29 0:00 [bdflush]
root 6 0.0 0.0 0 0 ? SW 19:29 0:00 [kupdated]
root 7 2.2 0.0 0 0 ? SW 19:29 3:54 [kjournald]
root 191 0.0 0.2 1540 612 ? S 19:29 0:08 /sbin/syslogd
root 194 0.0 0.4 2084 1204 ? S 19:29 0:02 /sbin/klogd
root 288 0.0 0.2 1520 520 ? S 19:29 0:00 /usr/sbin/inetd
root 296 0.0 0.4 3068 1232 ? S 19:29 0:00 /usr/sbin/sshd
daemon 299 0.0 0.2 1672 620 ? S 19:29 0:00 /usr/sbin/atd
root 302 0.0 0.2 1928 720 ? S 19:29 0:00 /usr/sbin/cron
root 305 0.0 0.1 1484 468 tty1 S 19:29 0:00 /sbin/getty
38400 tty1
root 306 0.0 0.1 1484 468 tty2 S 19:29 0:00 /sbin/getty
38400 tty2
root 307 0.0 0.1 1484 468 tty3 S 19:29 0:00 /sbin/getty
38400 tty3
root 308 0.0 0.1 1484 468 tty4 S 19:29 0:00 /sbin/getty
38400 tty4
root 309 0.0 0.1 1484 468 tty5 S 19:29 0:00 /sbin/getty
38400 tty5
root 311 0.0 0.1 1484 468 tty6 S 19:29 0:00 /sbin/getty
38400 tty6
root 385 0.0 0.7 5920 1840 ? S 19:29 0:00 /usr/sbin/sshd
root 387 0.0 0.5 2448 1312 pts/0 S 19:30 0:00 -bash
root 25406 0.0 0.3 2248 984 pts/0 S 22:20
0:00 /bin/bash /usr/lib/ipsec/_plutorun --debug --uniqueids yes --n
root 25407 0.0 0.1 1476 372 pts/0 S 22:20 0:00 logger -s -p
daemon.error -t ipsec__plutorun
root 25410 1.0 0.3 2248 992 pts/0 S 22:20
0:00 /bin/bash /usr/lib/ipsec/_plutorun --debug --uniqueids yes --n
root 25411 0.0 0.3 2248 976 pts/0 S 22:20
0:00 /bin/sh /usr/lib/ipsec/_plutoload --wait no --post
root 25412 2.0 0.7 5524 1828 pts/0 S 22:20
0:00 /usr/lib/ipsec/pluto --nofork --secretsfile /etc/ipsec.secrets
root 25420 0.0 0.1 1412 264 pts/0 S 22:20 0:00 _pluto_adns
root 25508 0.0 0.6 3676 1616 pts/0 R 22:20 0:00 ps aux
vanvpn1:/usr/src/freeswan-2.04/debian# /etc/init.d/ipsec -status
Usage: ipsec setup {--start|--stop|--restart|--status}
vanvpn1:/usr/src/freeswan-2.04/debian# /etc/init.d/ipsec --status
IPsec running
pluto pid 25412
vanvpn1:/usr/src/freeswan-2.04/debian# /etc/init.d/ipsec stop
ipsec_setup: Stopping FreeS/WAN IPsec...
ipsec_setup: Attempt to shut Pluto down failed! Trying kill:
ipsec_setup: /usr/lib/ipsec/_realsetup: kill: (25412) - No such process
vanvpn1:/usr/src/freeswan-2.04/debian# ps aux
USER PID %CPU %MEM VSZ RSS TTY STAT START TIME COMMAND
root 1 0.0 0.1 1492 500 ? S 19:29 0:05 init [2]
root 2 0.0 0.0 0 0 ? SW 19:29 0:00 [keventd]
root 3 0.0 0.0 0 0 ? SWN 19:29 0:00 [ksoftirqd_CPU0]
root 4 0.0 0.0 0 0 ? SW 19:29 0:00 [kswapd]
root 5 0.0 0.0 0 0 ? SW 19:29 0:00 [bdflush]
root 6 0.0 0.0 0 0 ? SW 19:29 0:00 [kupdated]
root 7 2.2 0.0 0 0 ? SW 19:29 3:54 [kjournald]
root 191 0.0 0.2 1540 612 ? S 19:29 0:08 /sbin/syslogd
root 194 0.0 0.4 2084 1204 ? S 19:29 0:02 /sbin/klogd
root 288 0.0 0.2 1520 520 ? S 19:29 0:00 /usr/sbin/inetd
root 296 0.0 0.4 3068 1232 ? S 19:29 0:00 /usr/sbin/sshd
daemon 299 0.0 0.2 1672 620 ? S 19:29 0:00 /usr/sbin/atd
root 302 0.0 0.2 1928 720 ? S 19:29 0:00 /usr/sbin/cron
root 305 0.0 0.1 1484 468 tty1 S 19:29 0:00 /sbin/getty
38400 tty1
root 306 0.0 0.1 1484 468 tty2 S 19:29 0:00 /sbin/getty
38400 tty2
root 307 0.0 0.1 1484 468 tty3 S 19:29 0:00 /sbin/getty
38400 tty3
root 308 0.0 0.1 1484 468 tty4 S 19:29 0:00 /sbin/getty
38400 tty4
root 309 0.0 0.1 1484 468 tty5 S 19:29 0:00 /sbin/getty
38400 tty5
root 311 0.0 0.1 1484 468 tty6 S 19:29 0:00 /sbin/getty
38400 tty6
root 385 0.0 0.7 5920 1840 ? S 19:29 0:00 /usr/sbin/sshd
root 387 0.0 0.5 2448 1312 pts/0 S 19:30 0:00 -bash
root 25552 0.0 0.3 2252 1004 pts/0 S 22:20
0:00 /bin/bash /usr/lib/ipsec/_plutorun --debug --uniqueids yes --n
root 25553 0.1 0.1 2012 492 pts/0 S 22:20 0:00 sleep 10
root 25576 0.0 0.6 3676 1616 pts/0 R 22:21 0:00 ps aux
vanvpn1:/usr/src/freeswan-2.04/debian# /etc/init.d/ipsec stop
ipsec_setup: Stopping FreeS/WAN IPsec...
ipsec_setup: Attempt to shut Pluto down failed! Trying kill:
ipsec_setup: /usr/lib/ipsec/_realsetup: kill: (25678) - No such process
vanvpn1:/usr/src/freeswan-2.04/debian# /etc/init.d/ipsec start
ipsec_setup: FreeS/WAN IPsec apparently already running, start aborted
vanvpn1:/usr/src/freeswan-2.04/debian# /etc/init.d/ipsec --status
IPsec running
pluto pid 25928
LOGS:
Mar 28 22:17:03 vanvpn1 ipsec_setup: ...FreeS/WAN IPsec stopped
Mar 28 22:17:03 vanvpn1 ipsec_setup: Restarting FreeS/WAN IPsec 2.04...
Mar 28 22:17:03 vanvpn1 ipsec_setup: KLIPS debug `none'
Mar 28 22:17:03 vanvpn1 ipsec_setup: KLIPS ipsec0 on eth0
65.39.254.254/255.255.255.0 broadcast 65.39.254.255
Mar 28 22:17:03 vanvpn1 ipsec_setup: ...FreeS/WAN IPsec started
Mar 28 22:17:19 vanvpn1 ipsec_setup: (/etc/ipsec.conf, line 49) did not find
config section(s) "setup" -- `stop' aborted
Mar 28 22:17:35 vanvpn1 last message repeated 2 times
Mar 28 22:18:06 vanvpn1 ipsec_setup: (/etc/ipsec.conf, line 49) did not find
config section(s) "setup" -- `stop' aborted
Mar 28 22:18:11 vanvpn1 ipsec_setup: (/etc/ipsec.conf, line 49) did not find
config section(s) "setup" -- `start' aborted
Mar 28 22:18:31 vanvpn1 ipsec__plutorun: /usr/lib/ipsec/_plutorun: line 1:
24247 Killed /usr/lib/ipsec/pluto --nofork --
secretsfile /etc/ipsec.secrets --policygroupsdir /etc/ipsec.d/policies --
uniqueids
Mar 28 22:18:31 vanvpn1 ipsec__plutorun: pluto killed by SIGKILL, terminating
without restart or unlock
Mar 28 22:18:31 vanvpn1 ipsec__plutorun: /usr/lib/ipsec/_plutorun: line 1:
25092 Killed /usr/lib/ipsec/pluto --nofork --
secretsfile /etc/ipsec.secrets --policygroupsdir /etc/ipsec.d/policies --
uniqueids
Mar 28 22:18:31 vanvpn1 ipsec__plutorun: pluto killed by SIGKILL, terminating
without restart or unlock
Mar 28 22:19:37 vanvpn1 ipsec_setup: FreeS/WAN IPsec apparently already
running, start aborted
Mar 28 22:20:13 vanvpn1 ipsec_setup: Stopping FreeS/WAN IPsec...
Mar 28 22:20:13 vanvpn1 ipsec_setup: Removing orphaned /var/run/pluto.pid:
Mar 28 22:20:13 vanvpn1 ipsec_setup: ...FreeS/WAN IPsec stopped
Mar 28 22:20:27 vanvpn1 ipsec_setup: Starting FreeS/WAN IPsec 2.04...
Mar 28 22:20:27 vanvpn1 ipsec_setup: KLIPS debug `none'
Mar 28 22:20:27 vanvpn1 ipsec_setup: KLIPS ipsec0 on eth0
65.39.254.254/255.255.255.0 broadcast 65.39.254.255
Mar 28 22:20:27 vanvpn1 ipsec_setup: ...FreeS/WAN IPsec started
Mar 28 22:20:56 vanvpn1 ipsec_setup: Stopping FreeS/WAN IPsec...
Mar 28 22:20:56 vanvpn1 ipsec__plutorun: /usr/lib/ipsec/_plutorun: line 1:
25412 Aborted /usr/lib/ipsec/pluto --nofork --
secretsfile /etc/ipsec.secrets --policygroupsdir /etc/ipsec.d/policies --
uniqueids
Mar 28 22:20:56 vanvpn1 ipsec__plutorun: !pluto failure!: exited with error
status 134 (signal 6)
Mar 28 22:20:56 vanvpn1 ipsec__plutorun: restarting IPsec after pause...
Mar 28 22:20:57 vanvpn1 ipsec_setup: Attempt to shut Pluto down failed! Trying
kill:
Mar 28 22:20:57 vanvpn1 ipsec_setup: /usr/lib/ipsec/_realsetup: kill: (25412) -
No such process
Mar 28 22:21:02 vanvpn1 ipsec_setup: ...FreeS/WAN IPsec stopped
Mar 28 22:21:06 vanvpn1 ipsec_setup: Stopping FreeS/WAN IPsec...
Mar 28 22:21:06 vanvpn1 ipsec_setup: stop ordered, but IPsec does not appear to
be running!
Mar 28 22:21:06 vanvpn1 ipsec_setup: doing cleanup anyway...
Mar 28 22:21:06 vanvpn1 ipsec_setup: ...FreeS/WAN IPsec stopped
Mar 28 22:21:06 vanvpn1 ipsec_setup: Restarting FreeS/WAN IPsec 2.04...
Mar 28 22:21:06 vanvpn1 ipsec_setup: KLIPS debug `none'
Mar 28 22:21:06 vanvpn1 ipsec_setup: KLIPS ipsec0 on eth0
65.39.254.254/255.255.255.0 broadcast 65.39.254.255
Mar 28 22:21:07 vanvpn1 ipsec_setup: ...FreeS/WAN IPsec started
Mar 28 22:21:14 vanvpn1 ipsec_setup: Stopping FreeS/WAN IPsec...
Mar 28 22:21:14 vanvpn1 ipsec__plutorun: /usr/lib/ipsec/_plutorun: line 1:
25678 Aborted /usr/lib/ipsec/pluto --nofork --
secretsfile /etc/ipsec.secrets --policygroupsdir /etc/ipsec.d/policies --
uniqueids
Mar 28 22:21:14 vanvpn1 ipsec__plutorun: !pluto failure!: exited with error
status 134 (signal 6)
Mar 28 22:21:14 vanvpn1 ipsec__plutorun: restarting IPsec after pause...
Mar 28 22:21:15 vanvpn1 ipsec_setup: Attempt to shut Pluto down failed! Trying
kill:
Mar 28 22:21:15 vanvpn1 ipsec_setup: /usr/lib/ipsec/_realsetup: kill: (25678) -
No such process
Mar 28 22:21:20 vanvpn1 ipsec_setup: ...FreeS/WAN IPsec stopped
Mar 28 22:21:24 vanvpn1 ipsec_setup: Stopping FreeS/WAN IPsec...
Mar 28 22:21:24 vanvpn1 ipsec_setup: stop ordered, but IPsec does not appear to
be running!
Mar 28 22:21:24 vanvpn1 ipsec_setup: doing cleanup anyway...
Mar 28 22:21:24 vanvpn1 ipsec_setup: ...FreeS/WAN IPsec stopped
Mar 28 22:21:25 vanvpn1 ipsec_setup: Restarting FreeS/WAN IPsec 2.04...
Mar 28 22:21:25 vanvpn1 ipsec_setup: KLIPS debug `none'
Mar 28 22:21:25 vanvpn1 ipsec_setup: KLIPS ipsec0 on eth0
65.39.254.254/255.255.255.0 broadcast 65.39.254.255
Mar 28 22:21:25 vanvpn1 ipsec_setup: ...FreeS/WAN IPsec started
Mar 28 22:21:43 vanvpn1 ipsec_setup: FreeS/WAN IPsec apparently already
running, start aborted
Mar 28 22:22:30 vanvpn1 ipsec_setup: Stopping FreeS/WAN IPsec...
Mar 28 22:22:30 vanvpn1 ipsec__plutorun: /usr/lib/ipsec/_plutorun: line 1:
25928 Aborted /usr/lib/ipsec/pluto --nofork --
secretsfile /etc/ipsec.secrets --policygroupsdir /etc/ipsec.d/policies --
uniqueids
Mar 28 22:22:30 vanvpn1 ipsec__plutorun: !pluto failure!: exited with error
status 134 (signal 6)
Mar 28 22:22:30 vanvpn1 ipsec__plutorun: restarting IPsec after pause...
Mar 28 22:22:31 vanvpn1 ipsec_setup: Attempt to shut Pluto down failed! Trying
kill:
Mar 28 22:22:31 vanvpn1 ipsec_setup: /usr/lib/ipsec/_realsetup: kill: (25928) -
No such process
Mar 28 22:22:36 vanvpn1 ipsec_setup: ...FreeS/WAN IPsec stopped
Mar 28 22:22:40 vanvpn1 ipsec_setup: Stopping FreeS/WAN IPsec...
Mar 28 22:22:40 vanvpn1 ipsec_setup: stop ordered, but IPsec does not appear to
be running!
Mar 28 22:22:40 vanvpn1 ipsec_setup: doing cleanup anyway...
Mar 28 22:22:40 vanvpn1 ipsec_setup: ...FreeS/WAN IPsec stopped
Mar 28 22:22:40 vanvpn1 ipsec_setup: Restarting FreeS/WAN IPsec 2.04...
Mar 28 22:22:40 vanvpn1 ipsec_setup: KLIPS debug `none'
Mar 28 22:22:40 vanvpn1 ipsec_setup: KLIPS ipsec0 on eth0
65.39.254.254/255.255.255.0 broadcast 65.39.254.255
Mar 28 22:22:41 vanvpn1 ipsec_setup: ...FreeS/WAN IPsec started
Thanks and best regards,
-Brad Chang
-http://www.dotnoc.com
-------------------------------------------------------------------
hosting,web design and managed services @ http://www.dotnoc.com
Thanks and best regards,
-Brad Chang
-http://www.dotnoc.com
-------------------------------------------------------------------
hosting,web design and managed services @ http://www.dotnoc.com
More information about the Users
mailing list