[Openswan Users] IPSEC 2.2.0 restarts all tunnels every 10 minutes
foren titze
foren.titze at gmx.net
Wed Sep 28 16:07:43 CEST 2005
Hello users,
I have a strange Problem:
Here my logfile:
--
Sep 28 12:02:09 GATEWAY pluto[8173]: "windoof--vogelsanger1" #12370:
initiating Main Mode to replace #12340
Sep 28 12:02:09 GATEWAY pluto[8173]: "windoof--vogelsanger1" #12370:
transition from state STATE_MAIN_I1 to state STATE_MAIN_I2
Sep 28 12:02:09 GATEWAY pluto[8173]: "windoof--vogelsanger1" #12370: I did not
send a certificate because I do not have one.
Sep 28 12:02:09 GATEWAY pluto[8173]: "windoof--vogelsanger1" #12370:
transition from state STATE_MAIN_I2 to state STATE_MAIN_I3
Sep 28 12:02:09 GATEWAY pluto[8173]: "windoof--vogelsanger1" #12370: Peer ID
is ID_IPV4_ADDR: 'xxx.xxx.5.162'
Sep 28 12:02:09 GATEWAY pluto[8173]: "windoof--vogelsanger1" #12370:
transition from state STATE_MAIN_I3 to state STATE_MAIN_I4
Sep 28 12:02:09 GATEWAY pluto[8173]: "windoof--vogelsanger1" #12370: ISAKMP SA
established
Sep 28 12:06:08 GATEWAY pluto[8173]: "catfish--gate2--win" #12371: initiating
Quick Mode PSK+ENCRYPT+TUNNEL+PFS+UP to replace #12369 {using isakmp#12367}
Sep 28 12:06:08 GATEWAY pluto[8173]: "catfish--gate2--unix" #12372: initiating
Quick Mode PSK+ENCRYPT+TUNNEL+PFS+UP to replace #12368 {using isakmp#12367}
Sep 28 12:06:08 GATEWAY pluto[8173]: "catfish--gate2--unix" #12372: transition
from state STATE_QUICK_I1 to state STATE_QUICK_I2
Sep 28 12:06:08 GATEWAY pluto[8173]: "catfish--gate2--unix" #12372: sent QI2,
IPsec SA established {ESP=>0x08425f1a <0xa187a6fd}
Sep 28 12:06:08 GATEWAY pluto[8173]: "catfish--gate2--win" #12371: transition
from state STATE_QUICK_I1 to state STATE_QUICK_I2
Sep 28 12:06:08 GATEWAY pluto[8173]: "catfish--gate2--win" #12371: sent QI2,
IPsec SA established {ESP=>0x83c68131 <0x9865ead9}
Sep 28 12:06:20 GATEWAY sshd[16232]: Did not receive identification string
from xxx.xxx.123.1
Sep 28 12:10:37 GATEWAY pluto[8173]: packet from xxx.xxx.114.2:500: ignoring
informational payload, type INVALID_COOKIE
Sep 28 12:10:37 GATEWAY pluto[8173]: packet from xxx.xxx.114.2:500: received
and ignored informational message
Sep 28 12:10:37 GATEWAY pluto[8173]: "catfish--gate2--unix" #12373: responding
to Main Mode
Sep 28 12:10:37 GATEWAY pluto[8173]: "catfish--gate2--unix" #12373: transition
from state (null) to state STATE_MAIN_R1
Sep 28 12:10:37 GATEWAY pluto[8173]: "catfish--gate2--unix" #12373: transition
from state STATE_MAIN_R1 to state STATE_MAIN_R2
Sep 28 12:10:37 GATEWAY pluto[8173]: "catfish--gate2--unix" #12373: ignoring
informational payload, type IPSEC_INITIAL_CONTACT
Sep 28 12:10:37 GATEWAY pluto[8173]: "catfish--gate2--unix" #12373: Peer ID is
ID_IPV4_ADDR: 'xxx.xxx.114.2'
Sep 28 12:10:37 GATEWAY pluto[8173]: "catfish--gate2--unix" #12373: I did not
send a certificate because I do not have one.
Sep 28 12:10:37 GATEWAY pluto[8173]: "catfish--gate2--unix" #12373: transition
from state STATE_MAIN_R2 to state STATE_MAIN_R3
Sep 28 12:10:37 GATEWAY pluto[8173]: "catfish--gate2--unix" #12373: sent MR3,
ISAKMP SA established
Sep 28 12:10:37 GATEWAY pluto[8173]: "catfish--gate2--unix" #12374: responding
to Quick Mode
Sep 28 12:10:37 GATEWAY pluto[8173]: "catfish--gate2--unix" #12374: transition
from state (null) to state STATE_QUICK_R1
Sep 28 12:10:37 GATEWAY pluto[8173]: "catfish--gate2--win" #12375: responding
to Quick Mode
Sep 28 12:10:37 GATEWAY pluto[8173]: "catfish--gate2--win" #12375: transition
from state (null) to state STATE_QUICK_R1
Sep 28 12:10:37 GATEWAY pluto[8173]: "catfish--gate2--unix" #12374: transition
from state STATE_QUICK_R1 to state STATE_QUICK_R2
Sep 28 12:10:37 GATEWAY pluto[8173]: "catfish--gate2--unix" #12374: IPsec SA
established {ESP=>0x810537ab <0x8559231d}
Sep 28 12:10:37 GATEWAY pluto[8173]: "catfish--gate2--win" #12375: transition
from state STATE_QUICK_R1 to state STATE_QUICK_R2
Sep 28 12:10:37 GATEWAY pluto[8173]: "catfish--gate2--win" #12375: IPsec SA
established {ESP=>0xdcd1930f <0x06aef742}
Sep 28 12:11:20 GATEWAY sshd[16388]: Did not receive identification string
from xxx.xxx.123.1
Sep 28 12:16:07 GATEWAY pluto[8173]: "catfish--gate2--win" #12376: initiating
Quick Mode PSK+ENCRYPT+TUNNEL+PFS+UP to replace #12375 {using isakmp#12373}
Sep 28 12:16:07 GATEWAY pluto[8173]: "catfish--gate2--unix" #12377: initiating
Quick Mode PSK+ENCRYPT+TUNNEL+PFS+UP to replace #12374 {using isakmp#12373}
Sep 28 12:16:07 GATEWAY pluto[8173]: "catfish--gate2--unix" #12377: transition
from state STATE_QUICK_I1 to state STATE_QUICK_I2
Sep 28 12:16:07 GATEWAY pluto[8173]: "catfish--gate2--unix" #12377: sent QI2,
IPsec SA established {ESP=>0x0a150f64 <0x579445de}
Sep 28 12:16:07 GATEWAY pluto[8173]: "catfish--gate2--win" #12376: transition
from state STATE_QUICK_I1 to state STATE_QUICK_I2
Sep 28 12:16:07 GATEWAY pluto[8173]: "catfish--gate2--win" #12376: sent QI2,
IPsec SA established {ESP=>0xcd70d934 <0xc7089160}
Sep 28 12:16:20 GATEWAY sshd[16422]: Did not receive identification string
from xxx.xxx.123.1
Sep 28 12:20:37 GATEWAY pluto[8173]: packet from xxx.xxx.114.2:500: ignoring
informational payload, type INVALID_COOKIE
Sep 28 12:20:37 GATEWAY pluto[8173]: packet from xxx.xxx.114.2:500: received
and ignored informational message
Sep 28 12:20:37 GATEWAY pluto[8173]: packet from xxx.xxx.114.2:500: ignoring
informational payload, type INVALID_COOKIE
Sep 28 12:20:37 GATEWAY pluto[8173]: packet from xxx.xxx.114.2:500: received
and ignored informational message
Sep 28 12:20:37 GATEWAY pluto[8173]: packet from xxx.xxx.114.2:500: ignoring
informational payload, type INVALID_COOKIE
Sep 28 12:20:37 GATEWAY pluto[8173]: packet from xxx.xxx.114.2:500: received
and ignored informational message
Sep 28 12:20:52 GATEWAY pluto[8173]: "catfish--gate2--unix" #12378: responding
to Main Mode
Sep 28 12:20:52 GATEWAY pluto[8173]: "catfish--gate2--unix" #12378: transition
from state (null) to state STATE_MAIN_R1
Sep 28 12:20:52 GATEWAY pluto[8173]: "catfish--gate2--unix" #12378: transition
from state STATE_MAIN_R1 to state STATE_MAIN_R2
Sep 28 12:20:52 GATEWAY pluto[8173]: "catfish--gate2--unix" #12378: ignoring
informational payload, type IPSEC_INITIAL_CONTACT
Sep 28 12:20:52 GATEWAY pluto[8173]: "catfish--gate2--unix" #12378: Peer ID is
ID_IPV4_ADDR: 'xxx.xxx.114.2'
Sep 28 12:20:52 GATEWAY pluto[8173]: "catfish--gate2--unix" #12378: I did not
send a certificate because I do not have one.
Sep 28 12:20:52 GATEWAY pluto[8173]: "catfish--gate2--unix" #12378: transition
from state STATE_MAIN_R2 to state STATE_MAIN_R3
Sep 28 12:20:52 GATEWAY pluto[8173]: "catfish--gate2--unix" #12378: sent MR3,
ISAKMP SA established
Sep 28 12:20:52 GATEWAY pluto[8173]: "catfish--gate2--unix" #12379: responding
to Quick Mode
Sep 28 12:20:52 GATEWAY pluto[8173]: "catfish--gate2--unix" #12379: transition
from state (null) to state STATE_QUICK_R1
Sep 28 12:20:52 GATEWAY pluto[8173]: "catfish--gate2--win" #12380: responding
to Quick Mode
Sep 28 12:20:52 GATEWAY pluto[8173]: "catfish--gate2--win" #12380: transition
from state (null) to state STATE_QUICK_R1
Sep 28 12:20:52 GATEWAY pluto[8173]: "catfish--gate2--unix" #12379: transition
from state STATE_QUICK_R1 to state STATE_QUICK_R2
Sep 28 12:20:52 GATEWAY pluto[8173]: "catfish--gate2--unix" #12379: IPsec SA
established {ESP=>0xb4d3abc4 <0x8abc40d4}
Sep 28 12:20:52 GATEWAY pluto[8173]: "catfish--gate2--win" #12380: transition
from state STATE_QUICK_R1 to state STATE_QUICK_R2
Sep 28 12:20:52 GATEWAY pluto[8173]: "catfish--gate2--win" #12380: IPsec SA
established {ESP=>0x4233fa74 <0x9a93cfd3}
Sep 28 12:21:20 GATEWAY sshd[16454]: Did not receive identification string
from xxx.xxx.123.1
Sep 28 12:26:20 GATEWAY sshd[16552]: Did not receive identification string
from xxx.xxx.123.1
Sep 28 12:26:22 GATEWAY pluto[8173]: "catfish--gate2--win" #12381: initiating
Quick Mode PSK+ENCRYPT+TUNNEL+PFS+UP to replace #12380 {using isakmp#12378}
Sep 28 12:26:22 GATEWAY pluto[8173]: "catfish--gate2--unix" #12382: initiating
Quick Mode PSK+ENCRYPT+TUNNEL+PFS+UP to replace #12379 {using isakmp#12378}
Sep 28 12:26:22 GATEWAY pluto[8173]: "catfish--gate2--unix" #12382: transition
from state STATE_QUICK_I1 to state STATE_QUICK_I2
Sep 28 12:26:22 GATEWAY pluto[8173]: "catfish--gate2--unix" #12382: sent QI2,
IPsec SA established {ESP=>0x098252c7 <0xe3dffa9b}
Sep 28 12:26:22 GATEWAY pluto[8173]: "catfish--gate2--win" #12381: transition
from state STATE_QUICK_I1 to state STATE_QUICK_I2
Sep 28 12:26:22 GATEWAY pluto[8173]: "catfish--gate2--win" #12381: sent QI2,
IPsec SA established {ESP=>0x04b38296 <0xb4502309}
Sep 28 12:26:36 GATEWAY pluto[8173]: "windoof--vogelsanger1" #12383:
initiating Quick Mode RSASIG+ENCRYPT+TUNNEL+PFS+UP to replace #12352 {using
isakmp#12370}
Sep 28 12:26:37 GATEWAY pluto[8173]: "windoof--vogelsanger1" #12383:
transition from state STATE_QUICK_I1 to state STATE_QUICK_I2
Sep 28 12:26:37 GATEWAY pluto[8173]: "windoof--vogelsanger1" #12383: sent QI2,
IPsec SA established {ESP=>0x3297b1d4 <0xe74153dd}
Sep 28 12:27:08 GATEWAY pluto[8173]: "windoof--vogelsanger1" #12384:
responding to Quick Mode
Sep 28 12:27:08 GATEWAY pluto[8173]: "windoof--vogelsanger1" #12384:
transition from state (null) to state STATE_QUICK_R1
Sep 28 12:27:08 GATEWAY pluto[8173]: "windoof--vogelsanger1" #12384:
transition from state STATE_QUICK_R1 to state STATE_QUICK_R2
Sep 28 12:27:08 GATEWAY pluto[8173]: "windoof--vogelsanger1" #12384: IPsec SA
established {ESP=>0x3297b1d5 <0xcd03b560}
Sep 28 12:30:52 GATEWAY pluto[8173]: packet from xxx.xxx.114.2:500: ignoring
informational payload, type INVALID_COOKIE
Sep 28 12:30:52 GATEWAY pluto[8173]: packet from xxx.xxx.114.2:500: received
and ignored informational message
Sep 28 12:30:52 GATEWAY pluto[8173]: packet from xxx.xxx.114.2:500: ignoring
informational payload, type INVALID_COOKIE
Sep 28 12:30:52 GATEWAY pluto[8173]: packet from xxx.xxx.114.2:500: received
and ignored informational message
Sep 28 12:30:52 GATEWAY pluto[8173]: packet from xxx.xxx.114.2:500: ignoring
informational payload, type INVALID_COOKIE
Sep 28 12:30:52 GATEWAY pluto[8173]: packet from xxx.xxx.114.2:500: received
and ignored informational message
Sep 28 12:31:20 GATEWAY sshd[16582]: Did not receive identification string
from xxx.xxx.123.1
Sep 28 12:31:56 GATEWAY pluto[8173]: "catfish--gate2--unix" #12385: responding
to Main Mode
Sep 28 12:31:57 GATEWAY pluto[8173]: "catfish--gate2--unix" #12385: transition
from state (null) to state STATE_MAIN_R1
Sep 28 12:31:57 GATEWAY pluto[8173]: "catfish--gate2--unix" #12385: transition
from state STATE_MAIN_R1 to state STATE_MAIN_R2
Sep 28 12:31:57 GATEWAY pluto[8173]: "catfish--gate2--unix" #12385: ignoring
informational payload, type IPSEC_INITIAL_CONTACT
Sep 28 12:31:57 GATEWAY pluto[8173]: "catfish--gate2--unix" #12385: Peer ID is
ID_IPV4_ADDR: 'xxx.xxx.114.2'
Sep 28 12:31:57 GATEWAY pluto[8173]: "catfish--gate2--unix" #12385: I did not
send a certificate because I do not have one.
Sep 28 12:31:57 GATEWAY pluto[8173]: "catfish--gate2--unix" #12385: transition
from state STATE_MAIN_R2 to state STATE_MAIN_R3
Sep 28 12:31:57 GATEWAY pluto[8173]: "catfish--gate2--unix" #12385: sent MR3,
ISAKMP SA established
Sep 28 12:31:57 GATEWAY pluto[8173]: "catfish--gate2--unix" #12386: responding
to Quick Mode
Sep 28 12:31:57 GATEWAY pluto[8173]: "catfish--gate2--unix" #12386: transition
from state (null) to state STATE_QUICK_R1
Sep 28 12:31:57 GATEWAY pluto[8173]: "catfish--gate2--win" #12387: responding
to Quick Mode
Sep 28 12:31:57 GATEWAY pluto[8173]: "catfish--gate2--win" #12387: transition
from state (null) to state STATE_QUICK_R1
Sep 28 12:31:57 GATEWAY pluto[8173]: "catfish--gate2--unix" #12386: transition
from state STATE_QUICK_R1 to state STATE_QUICK_R2
Sep 28 12:31:57 GATEWAY pluto[8173]: "catfish--gate2--unix" #12386: IPsec SA
established {ESP=>0x82dda8c5 <0x87580d1e}
Sep 28 12:31:57 GATEWAY pluto[8173]: "catfish--gate2--win" #12387: transition
from state STATE_QUICK_R1 to state STATE_QUICK_R2
Sep 28 12:31:57 GATEWAY pluto[8173]: "catfish--gate2--win" #12387: IPsec SA
established {ESP=>0x587c6d24 <0xa82493e1}
Sep 28 12:36:20 GATEWAY sshd[16616]: Did not receive identification string
from xxx.xxx.123.1
Sep 28 12:37:27 GATEWAY pluto[8173]: "catfish--gate2--win" #12388: initiating
Quick Mode PSK+ENCRYPT+TUNNEL+PFS+UP to replace #12387 {using isakmp#12385}
Sep 28 12:37:27 GATEWAY pluto[8173]: "catfish--gate2--unix" #12389: initiating
Quick Mode PSK+ENCRYPT+TUNNEL+PFS+UP to replace #12386 {using isakmp#12385}
Sep 28 12:37:27 GATEWAY pluto[8173]: "catfish--gate2--unix" #12389: transition
from state STATE_QUICK_I1 to state STATE_QUICK_I2
Sep 28 12:37:27 GATEWAY pluto[8173]: "catfish--gate2--unix" #12389: sent QI2,
IPsec SA established {ESP=>0x857fa13d <0x353ca69c}
Sep 28 12:37:27 GATEWAY pluto[8173]: "catfish--gate2--win" #12388: transition
from state STATE_QUICK_I1 to state STATE_QUICK_I2
Sep 28 12:37:27 GATEWAY pluto[8173]: "catfish--gate2--win" #12388: sent QI2,
IPsec SA established {ESP=>0xac7db256 <0xd6efe8b8}
Sep 28 12:39:57 GATEWAY pluto[8173]: "catfish--gate2--unix" #12390: responding
to Main Mode
Sep 28 12:39:57 GATEWAY pluto[8173]: "catfish--gate2--unix" #12390: transition
from state (null) to state STATE_MAIN_R1
Sep 28 12:39:57 GATEWAY pluto[8173]: "catfish--gate2--unix" #12390: transition
from state STATE_MAIN_R1 to state STATE_MAIN_R2
Sep 28 12:39:57 GATEWAY pluto[8173]: "catfish--gate2--unix" #12390: ignoring
informational payload, type IPSEC_INITIAL_CONTACT
Sep 28 12:39:57 GATEWAY pluto[8173]: "catfish--gate2--unix" #12390: Peer ID is
ID_IPV4_ADDR: 'xxx.xxx.114.2'
Sep 28 12:39:57 GATEWAY pluto[8173]: "catfish--gate2--unix" #12390: I did not
send a certificate because I do not have one.
Sep 28 12:39:57 GATEWAY pluto[8173]: "catfish--gate2--unix" #12390: transition
from state STATE_MAIN_R2 to state STATE_MAIN_R3
Sep 28 12:39:57 GATEWAY pluto[8173]: "catfish--gate2--unix" #12390: sent MR3,
ISAKMP SA established
Sep 28 12:39:57 GATEWAY pluto[8173]: "catfish--gate2--unix" #12391: responding
to Quick Mode
Sep 28 12:39:57 GATEWAY pluto[8173]: "catfish--gate2--unix" #12391: transition
from state (null) to state STATE_QUICK_R1
Sep 28 12:39:58 GATEWAY pluto[8173]: "catfish--gate2--win" #12392: responding
to Quick Mode
Sep 28 12:39:58 GATEWAY pluto[8173]: "catfish--gate2--win" #12392: transition
from state (null) to state STATE_QUICK_R1
Sep 28 12:39:58 GATEWAY pluto[8173]: "catfish--gate2--unix" #12391: transition
from state STATE_QUICK_R1 to state STATE_QUICK_R2
Sep 28 12:39:58 GATEWAY pluto[8173]: "catfish--gate2--unix" #12391: IPsec SA
established {ESP=>0x377432cf <0xaa697683}
Sep 28 12:39:58 GATEWAY pluto[8173]: "catfish--gate2--win" #12392: transition
from state STATE_QUICK_R1 to state STATE_QUICK_R2
Sep 28 12:39:58 GATEWAY pluto[8173]: "catfish--gate2--win" #12392: IPsec SA
established {ESP=>0x8cfe4bfa <0x4137d291}
Sep 28 12:40:37 GATEWAY pluto[8173]: packet from xxx.xxx.114.2:500: ignoring
informational payload, type INVALID_COOKIE
Sep 28 12:40:37 GATEWAY pluto[8173]: packet from xxx.xxx.114.2:500: received
and ignored informational message
Sep 28 12:41:20 GATEWAY sshd[16772]: Did not receive identification string
from xxx.xxx.123.1
Sep 28 12:45:28 GATEWAY pluto[8173]: "catfish--gate2--win" #12393: initiating
Quick Mode PSK+ENCRYPT+TUNNEL+PFS+UP to replace #12392 {using isakmp#12390}
Sep 28 12:45:28 GATEWAY pluto[8173]: "catfish--gate2--unix" #12394: initiating
Quick Mode PSK+ENCRYPT+TUNNEL+PFS+UP to replace #12391 {using isakmp#12390}
Sep 28 12:45:28 GATEWAY pluto[8173]: "catfish--gate2--unix" #12394: transition
from state STATE_QUICK_I1 to state STATE_QUICK_I2
Sep 28 12:45:28 GATEWAY pluto[8173]: "catfish--gate2--unix" #12394: sent QI2,
IPsec SA established {ESP=>0x8a41dcaa <0xc3a82e19}
Sep 28 12:45:28 GATEWAY pluto[8173]: "catfish--gate2--win" #12393: transition
from state STATE_QUICK_I1 to state STATE_QUICK_I2
Sep 28 12:45:28 GATEWAY pluto[8173]: "catfish--gate2--win" #12393: sent QI2,
IPsec SA established {ESP=>0x485165af <0xc6184ca5}
---
Is there a Bug in IPSEC 2.2.0 with the Kernel 2.6.11 on Debian Stable?
thx ben
More information about the Users
mailing list