Re: [pfSense] Ipsec issue

2016-08-02 Thread Eero Volotinen 
Well, that sounds like lifetime setting is not correct on another endpoint?

Eero

3.8.2016 3.07 ap. "Francois Roussy"  kirjoitti:

> Hi,
>
> I have a ipsec tunnel between a pfsense 2.3.2 and a fortigate 200d
>
> Every ~24h, there is a small disruption because it seem the tunnel drop
> and come back..
>
> any idea why ?
>
> On the 200d, there is 10 more fortigate 50b connected to it, and i dont
> see that issue.
>
> thanks
>
>
> ___
> pfSense mailing list
> https://lists.pfsense.org/mailman/listinfo/list
> Support the project with Gold! https://pfsense.org/gold
>
___
pfSense mailing list
https://lists.pfsense.org/mailman/listinfo/list
Support the project with Gold! https://pfsense.org/gold

[pfSense] Ipsec issue

2016-08-02 Thread Francois Roussy 
Hi,

I have a ipsec tunnel between a pfsense 2.3.2 and a fortigate 200d

Every ~24h, there is a small disruption because it seem the tunnel drop and 
come back..

any idea why ?

On the 200d, there is 10 more fortigate 50b connected to it, and i dont see 
that issue.

thanks


___
pfSense mailing list
https://lists.pfsense.org/mailman/listinfo/list
Support the project with Gold! https://pfsense.org/gold

Re: [pfSense] IPSEC Issue

2016-06-01 Thread Chris Buechler 
On Tue, May 31, 2016 at 2:46 AM, Daniel Eschner  wrote:
> Hi There,
>
> i get since some days a couple of errors:
>
> May 31 09:42:40 gw01 charon: 08[KNL]  unable to query SAD entry 
> with SPI c6bce4d4: No such file or directory (2)
> May 31 09:42:49 gw01 charon: 08[KNL]  unable to query SAD entry 
> with SPI c6bce4d4: No such file or directory (2)
> May 31 09:42:56 gw01 charon: 10[KNL]  unable to query SAD entry 
> with SPI c6bce4d4: No such file or directory (2)
> May 31 09:43:12 gw01 charon: 10[KNL]  unable to query SAD entry 
> with SPI c6bce4d4: No such file or directory (2)
> May 31 09:43:29 gw01 charon: 13[KNL]  unable to query SAD entry 
> with SPI c6bce4d4: No such file or directory (2)
> May 31 09:43:45 gw01 charon: 10[KNL]  unable to query SAD entry 
> with SPI c6bce4d4: No such file or directory (2)
> May 31 09:43:57 gw01 charon: 05[KNL]  unable to query SAD entry 
> with SPI c6bce4d4: No such file or directory (2)
> May 31 09:44:14 gw01 charon: 16[KNL]  unable to query SAD entry 
> with SPI c6bce4d4: No such file or directory (2)
> May 31 09:44:30 gw01 charon: 09[KNL]  unable to query SAD entry 
> with SPI c6bce4d4: No such file or directory (2)
> May 31 09:44:30 gw01 charon: 09[KNL]  unable to query SAD entry 
> with SPI ccc89c04: No such file or directory (2)
> May 31 09:44:46 gw01 charon: 09[KNL]  unable to query SAD entry 
> with SPI c6bce4d4: No such file or directory (2)
> May 31 09:44:46 gw01 charon: 09[KNL]  unable to query SAD entry 
> with SPI ccc89c04: No such file or directory (2)
>
> I looked arrounf and just found „Its a bug which ist fixed in the current 
> Version“
> Ok i use the current Version but didnt seems fixed :-(
>

Those log lines in particular weren't the bug you found. Those are
normal under a variety of circumstances, usually when the OS deletes
an SA and then strongswan gets something that wants to delete it
again. Just something that happened along with whatever that issue
was.

If you aren't actually having any problems, that's safe to ignore. If
you are having problems, more log context and a description of the
issue will be necessary.
___
pfSense mailing list
https://lists.pfsense.org/mailman/listinfo/list
Support the project with Gold! https://pfsense.org/gold

[pfSense] IPSEC issue,

2016-02-17 Thread Abid khan 
Hi, I have been stuck for days on an issue,
Forum post as below. kindly advise.
https://forum.pfsense.org/index.php?topic=106777.msg594800#msg594800
rgdsAK
___
pfSense mailing list
https://lists.pfsense.org/mailman/listinfo/list
Support the project with Gold! https://pfsense.org/gold