[Openswan Users] lost one of two connections
Vadim
chmind at yandex.ru
Tue Sep 14 05:49:41 EDT 2010
Hi there,
I have two ipsec connections:
version 2.0
config setup
klipsdebug=none
plutodebug="control controlmore dpd"
protostack=netkey
interfaces=%defaultroute
virtual_private=%v4:192.168.2.0/24,%v4:192.168.4.0/25,%v4:192.168.1.0/24
oe=off
nhelpers=4
conn aaa-20
leftsubnet=192.168.2.0/24
also=net-base
conn bbb-40
leftsubnet=192.168.4.0/25
also=net-base
conn net-base
left=xxx.xxx.xxx.xxx
right=yyy.yyy.yyy.yyy
rightsubnet=192.168.1.0/24
authby=secret
pfs=yes
keyexchange=ike
ike=3des-sha1
keyingtries=%forever
ikelifetime=8h
keylife=1h
aggrmode=no
compress=no
auto=add
auth=esp
esp=3des-hmac_sha1-2
conn OEself
auto=ignore
conn clear
auto=ignore
conn private
auto=ignore
conn private-or-clear
auto=ignore
conn clear-or-private
auto=ignore
conn block
auto=ignore
conn packetdefault
auto=ignore
And everithing was ok, but a week ago, the connection to one of these
private nets(randomly either 2.0 or 4.0) was lost, and began to flap,
every day the connection to one of these subnets is lost, and I have to
restart ipsec, After this the connection become alive.
How can I debug ipsec?
More information about the Users
mailing list