[Openswan Users] Re: IPsec hangs when server closes the connection
androef at caramail.com
Wed Jun 1 15:30:29 CEST 2005
> So you are running it as a client? And it works? That is great.
Yes, I do. I'm very happy over here.
> And are you using "listen-addr 127.0.0.1"
> so that the l2tpd daemon cannot be reached from the outside?
I do now.
> Check out the lcp-echo-interval for /etc/ppp/options.l2tpd (man pppd).
> It should send out traffic once in a while so that the connection does
> not disconnect.
Let's see, if it works.
> You will have to be more precise. You might have to use the dumpdir
> parameter in ipsec.conf. But I am a bit puzzled: an ipsec stop should
> always clean up after itself (AFAIK).
OK. I'll try. To start the connection, I do the following (as root)
route add default wlan0
ipsec auto -up fhvpn
route add default ppp0
ipsec auto --down fhvpn
Once the connection is lost, the following commands aren't working.
(I have to press Ctrl+C to get back to the prompt.)
ipsec auto -down fhvpn (fhvpn is the conn.-name)
/etc/init.d/ipsec start works, but it tells me it's still running.
L2tpd goes up an down, but of course I don't have an ppp0-Interface anymore.
An ipsec barf works always, but when ipsec hangs, ipsec barf hangs at the following lines:
(I have to press Ctrl+C again to get back to the prompt.)
+ ipsec auto --status
Checking that pluto is running
The barf-stuff is here:
Maybe it has something to do with pluto. The message "is pluto runnig" comes up, when IPsec isn't running
and: When it hangs.
Annother problem is, that the pc-cardmanager can't exit, when I shut down the Computer. It hangs.
So the filesysten can't be unmounted. Then I get theese annoying replay-messages during startup.
Protek-on: CaraMail met en oeuvre un nouveau Concept de Sécurité Globale - www.caramail.com
More information about the Users