[Openswan Users] lost one of two connections

Vadim chmind at yandex.ru
Fri Sep 17 01:50:33 EDT 2010 

  17.09.2010 1:28, Vadim пишет:
>    14.09.2010 19:18, Paul Wouters пишет:
>> The standard logs should already tell you what is happening. Do not
>> enable
>> more debugging. Just look at the logs to see what is going on.... If
>> it makes no sense to you, post a bit of it here for us to look at.
>>
>> Paul
> Hi
>
> For example, is it normal?
And what about this part of logs:
Sep 17 09:38:26 vpn pluto[13460]: | *received 68 bytes from 
yyy.yyy.yyy.yyy:500 on eth0:2 (port=500)
Sep 17 09:38:26 vpn pluto[13460]: | **parse ISAKMP Message:
Sep 17 09:38:26 vpn pluto[13460]: |    initiator cookie:
Sep 17 09:38:26 vpn pluto[13460]: |   85 87 eb 06  f1 51 7b 73
Sep 17 09:38:26 vpn pluto[13460]: |    responder cookie:
Sep 17 09:38:26 vpn pluto[13460]: |   ef 2d 22 57  19 a9 5b 8e
Sep 17 09:38:26 vpn pluto[13460]: |    next payload type: ISAKMP_NEXT_HASH
Sep 17 09:38:26 vpn pluto[13460]: |    ISAKMP version: ISAKMP Version 
1.0 (rfc2407)
Sep 17 09:38:26 vpn pluto[13460]: |    exchange type: ISAKMP_XCHG_INFO
Sep 17 09:38:26 vpn pluto[13460]: |    flags: ISAKMP_FLAG_ENCRYPTION
Sep 17 09:38:26 vpn pluto[13460]: |    message ID:  f8 c6 54 41
Sep 17 09:38:26 vpn pluto[13460]: |    length: 68
Sep 17 09:38:26 vpn pluto[13460]: |  processing version=1.0 packet with 
exchange type=ISAKMP_XCHG_INFO (5)
Sep 17 09:38:26 vpn pluto[13460]: | ICOOKIE:  85 87 eb 06  f1 51 7b 73
Sep 17 09:38:26 vpn pluto[13460]: | RCOOKIE:  ef 2d 22 57  19 a9 5b 8e
Sep 17 09:38:26 vpn pluto[13460]: | state hash entry 3
Sep 17 09:38:26 vpn pluto[13460]: | peer and cookies match on #19, 
provided msgid 00000000 vs 35856a7f/00000000
Sep 17 09:38:26 vpn pluto[13460]: | peer and cookies match on #18, 
provided msgid 00000000 vs ea131312/00000000
Sep 17 09:38:26 vpn pluto[13460]: | peer and cookies match on #14, 
provided msgid 00000000 vs 00000000/00000000
Sep 17 09:38:26 vpn pluto[13460]: | p15 state object #14 found, in 
STATE_MAIN_R3
Sep 17 09:38:26 vpn pluto[13460]: | processing connection net-20
Sep 17 09:38:26 vpn pluto[13460]: | got payload 0x100(ISAKMP_NEXT_HASH) 
needed: 0x100 opt: 0x0
Sep 17 09:38:26 vpn pluto[13460]: | ***parse ISAKMP Hash Payload:
Sep 17 09:38:26 vpn pluto[13460]: |    next payload type: ISAKMP_NEXT_D
Sep 17 09:38:26 vpn pluto[13460]: |    length: 24
Sep 17 09:38:26 vpn pluto[13460]: | got payload 0x1000(ISAKMP_NEXT_D) 
needed: 0x0 opt: 0x0
Sep 17 09:38:26 vpn pluto[13460]: | ***parse ISAKMP Delete Payload:
Sep 17 09:38:26 vpn pluto[13460]: |    next payload type: ISAKMP_NEXT_NONE
Sep 17 09:38:26 vpn pluto[13460]: |    length: 16
Sep 17 09:38:26 vpn pluto[13460]: |    DOI: ISAKMP_DOI_IPSEC
Sep 17 09:38:26 vpn pluto[13460]: |    protocol ID: 3
Sep 17 09:38:26 vpn pluto[13460]: |    SPI size: 4
Sep 17 09:38:26 vpn pluto[13460]: |    number of SPIs: 1
Sep 17 09:38:26 vpn pluto[13460]: | processing connection net-40
Sep 17 09:38:26 vpn pluto[13460]: "net-20" #14: received Delete 
SA(0xf51e931d) payload: deleting IPSEC State #18
Sep 17 09:38:26 vpn pluto[13460]: | deleting state #18
Sep 17 09:38:26 vpn pluto[13460]: | sending 68 bytes for delete notify 
through eth0:2:500 to yyy.yyy.yyy.yyy:500 (using #14)
Sep 17 09:38:26 vpn pluto[13460]: | del:  f5 1e 93 1d
Sep 17 09:38:26 vpn pluto[13460]: "net-20" #14: received and ignored 
informational message
Sep 17 09:38:26 vpn pluto[13460]: | complete state transition with 
STF_IGNORE
Sep 17 09:38:26 vpn pluto[13460]: | * processed 0 messages from 
cryptographic helpers
Sep 17 09:38:26 vpn pluto[13460]: | next event EVENT_RETRANSMIT in 1 
seconds for #8
Sep 17 09:38:26 vpn pluto[13460]: | next event EVENT_RETRANSMIT in 1 
seconds for #8
Sep 17 09:38:27 vpn pluto[13460]: |
Sep 17 09:38:27 vpn pluto[13460]: | next event EVENT_RETRANSMIT in 0 
seconds for #8
Sep 17 09:38:27 vpn pluto[13460]: | *time to handle event
Sep 17 09:38:27 vpn pluto[13460]: | handling event EVENT_RETRANSMIT
Sep 17 09:38:27 vpn pluto[13460]: | event after this is EVENT_RETRANSMIT 
in 24 seconds
Sep 17 09:38:27 vpn pluto[13460]: | processing connection net-40
Sep 17 09:38:27 vpn pluto[13460]: | handling event EVENT_RETRANSMIT for 
<invalid> "net-40" #8
Sep 17 09:38:27 vpn pluto[13460]: | sending 292 bytes for 
EVENT_RETRANSMIT through eth0:2:500 to yyy.yyy.yyy.yyy:500 (using #8)
Sep 17 09:38:27 vpn pluto[13460]: | inserting event EVENT_RETRANSMIT, 
timeout in 40 seconds for #8
Sep 17 09:38:27 vpn pluto[13460]: | next event EVENT_RETRANSMIT in 24 
seconds for #2
Sep 17 09:38:52 vpn pluto[13460]: |
Sep 17 09:38:52 vpn pluto[13460]: | next event EVENT_RETRANSMIT in -1 
seconds for #2
Sep 17 09:38:52 vpn pluto[13460]: | *time to handle event
Sep 17 09:38:52 vpn pluto[13460]: | handling event EVENT_RETRANSMIT
Sep 17 09:38:52 vpn pluto[13460]: | event after this is EVENT_RETRANSMIT 
in 1 seconds
Sep 17 09:38:52 vpn pluto[13460]: | processing connection net-20
Sep 17 09:38:52 vpn pluto[13460]: | handling event EVENT_RETRANSMIT for 
<invalid> "net-20" #2


net-40 - don't work in this time.

More information about the Users mailing list