[Openswan Users] Tunnel won't shut down properly
Paul Wouters
paul at xelerance.com
Fri Jan 14 12:02:49 CET 2005
On Fri, 14 Jan 2005 tomk at runbox.com wrote:
> Here's the problem. If I boot into Debian and connect the Debian VPN, that works fine. However, if I then reboot into Arch or Windows, I can't connect to anything. Similarly with Debian and Windows, after using the Arch tunnel. AFAICS, the reason is that the routing table in IPCop retains the following entry:
Please tell IPcop to upgrade to openswan-2. You are likely not processing all
NOTIFICATIONS, so the IPcop machine keeps the tunnel up and will only accept
plaintext packets from your IP until after rekeying has failed. Also check
that uniqueids=yes, which should solve this problem. And another way to solve
this is to enable Dead Peer Detection, using dpdaction=clear.
Paul
--
"At best it is a theory, at worst a fantasy" -- Michael Crichton
More information about the Users
mailing list