[Openswan Users] Tunnel keeps up, but traffic is not sent.
Paul Wouters
paul at xelerance.com
Mon Jan 16 19:12:01 CET 2006
On Mon, 16 Jan 2006, Julio Cesar Gazquez wrote:
> Hi. I recently set my first IPSec tunnels in several locations, all of them
> against a box in the main branch, controlled by another shop.
>
> Most of them have a NAT setup, yet with a full NATed IP. The tunnels are
> working, but sometimes the tunnels get stuck, as they appear in the output of
> ipsec eroute, but the waiting package count goes up and nothing is
> transferred across until I restart the service.
>
> Is this a known problem? I guess this is not a matter of NAT port timeout as
> the whole IP is forwarded.
I've never heard of this before. Perhaps the main office end has some logs that
might sched light on this? Is there anything in the openswan log at the time
the tunnel 'breaks'?
Paul
More information about the Users
mailing list