* BARDOU Pierre (bardo...@mipih.fr) wrote: > Hello, > > I had a working ipsec tunnel this morning : > Dec 04 09:30:35.086117 rule 375/(match) pass in on vlan100: 10.80.2.135.4685 > > 10.96.37.1.23: S 2120140262:2120140262(0) win 64512 <mss > 1460,nop,nop,sackOK> (DF) > Dec 04 09:30:35.086154 rule 28/(match) pass out on enc0: 10.80.2.135.4685 > > 10.96.37.1.23: S 2120140262:2120140262(0) win 64512 <mss > 1460,nop,nop,sackOK> > > At noon I rebooted my gateway, and now packets get lost in the wild (no > "pass out" nor "block out"): > Dec 04 13:55:35.054695 rule 375/(match) pass in on vlan100: 10.80.2.135.3265 > > 10.96.37.1.23: S 2811095018:2811095018(0) win 64512 <mss > 1460,nop,nop,sackOK> (DF) > > But my tunnel is still up according to ipsecctl -sa. > > I have other tunnels who work like a charm. > > Anyone could tell me out to get my packets back on the right way ?
you might have lost a route /j > > TYVM > > -- > Cordialement, > > Pierre BARDOU > CSIM - Bureau 012 > > > > > 12 rue Michel Labrousse > BP93668 > F-31036 Toulouse CEDEX 1 > > Til : 05 67 69 71 84 > Fax : 05 34 61 51 00 > Mail : bardo...@mipih.fr > > [demime 1.01d removed an attachment of type application/x-pkcs7-signature > which had a name of smime.p7s]