[Openswan Users] Opens wan sleep conexion
Paul Wouters
paul at xelerance.com
Thu Nov 8 09:49:31 EST 2007
On Thu, 8 Nov 2007, Walter Willis wrote:
> compile openswan in linux kernel,
> the problem is the conexion sleep if i run command
>
>
> service ipsec star in the two sides, the conexion pining, but no ping one
> hour and pining and not pass the ping.
>
> There is some command to keep alive the connection?
Check dpdaction=, dpdtimeout= and dpdaction=
Paul
>
> my files is:
>
>
> config setup
> interfaces=%defaultroute
> # Debug-logging controls: "none" for (almost) none, "all" for lots.
> # klipsdebug=none
> # plutodebug="control parsing"
> nat_traversal=yes
> #uniqueids=no
> virtual_private=%all
>
> conn roberto-walter
> keyingtries=1
> #type=tunnel
> authby=rsasig
> #keyexchange=ike
> #keylife=2m
> #rekey=yes
> compress=yes
> left=192.168.10.65
> leftsubnet=192.168.254.0/24
> leftid=@roberto.yyyyyy.com.pe
> leftrsasigkey=0sAQOJ...
> #leftnexthop=%defaulroute
> #also=config-base
> right=bbbb.servebbs.org
> rightid=@walter.yyyyyy.com.pe
> rightsubnet=192.168.231.0/24
> rightrsasigkey=0sAQOv0NN5hW...
> #rightnexthop=200.47.186.225
> auto=start
>
> the other iqual but the configure and keys in their place.
>
> the ipsec auto --status and
>
> 000 #5: "walter-roberto":4500 STATE_QUICK_R2 (IPsec SA established);
> EVENT_SA_REPLACE in 28496s; newest IPSEC; eroute owner
> 000 #5: "walter-roberto" esp.f27346ba at 200.60.90.184
> esp.93f3b88 at 192.168.1.199 comp.5314 at 200.60.90.184 comp.1bf3 at 192.168.1.199
> tun.0 at 200.60.90.184 tun.0 at 192.168.1.199
> 000 #4: "walter-roberto":4500 STATE_MAIN_R3 (sent MR3, ISAKMP SA
> established); EVENT_SA_REPLACE in 3295s; newest ISAKMP; lastdpd=-1s(seq in:0
> out:0)
>
> is it lastdpd=-1s(seq in:0 out:0)????
>
> THANKS!!!
>
--
Building and integrating Virtual Private Networks with Openswan:
http://www.amazon.com/gp/product/1904811256/104-3099591-2946327?n=283155
More information about the Users
mailing list