Re: [pfSense] IPSec log comments

2016-07-28 Thread Chris Buechler 
On Thu, Jul 28, 2016 at 11:19 AM, Paul Galati  wrote:
> I noted installed packages
> I backed up my configuration xml, 2.2.4
> I replaced hard disk with SSD
> Installed fresh 32-bit 2.3.2
> Installed packages
> imported config
>
> The 3 openvpn clients logged back in with no problem and tunneled VOIP phones 
> logged back in as well.  My guest network was unable to reach the internet 
> until I added a line to rules.  Not quite sure why it worked with 2.2.4 but 
> did not in 2.3.2.  Nonetheless, the pass !LAN statement worked.  The only 
> things I am noticing so far is that when I change any preference in the 
> dashboard, the traffic graphs fall back to only showing the WAN traffic.  
> Resetting the traffic graph prefs works until I change a different dashboard 
> pref.
>
> The more important is the IPSec log file.  The only IPSec config is the 
> mobile client.  Here is what I am seeing in the the log when no one is 
> connected.
>
>
> Jul 28 12:01:08  charon  
> 14[CFG] vici client 891 disconnected
> Jul 28 12:01:08  charon  
> 14[CFG] vici client 891 requests: list-sas
> Jul 28 12:01:08  charon  
> 10[CFG] vici client 891 registered for: list-sa
> Jul 28 12:01:08  charon  
> 14[CFG] vici client 891 connected
> Jul 28 12:01:02  charon  
> 08[CFG] vici client 890 disconnected
> Jul 28 12:01:02  charon  
> 08[CFG] vici client 890 requests: list-sas
> Jul 28 12:01:02  charon  
> 08[CFG] vici client 890 registered for: list-sa
> Jul 28 12:01:02  charon  
> 14[CFG] vici client 890 connected
> Jul 28 12:00:51  charon  
> 14[CFG] vici client 889 disconnected
> Jul 28 12:00:51  charon  
> 08[CFG] vici client 889 requests: list-sas
> Jul 28 12:00:51  charon  
> 08[CFG] vici client 889 registered for: list-sa
> Jul 28 12:00:51  charon  
> 08[CFG] vici client 889 connected
> Jul 28 12:00:44  charon  
> 08[CFG] vici client 888 disconnected
> Jul 28 12:00:44  charon  
> 09[CFG] vici client 888 requests: list-sas
> Jul 28 12:00:44  charon  
> 12[CFG] vici client 888 registered for: list-sa
> Jul 28 12:00:44  charon  
> 12[CFG] vici client 888 connected
> Jul 28 12:00:28  charon  
> 12[CFG] vici client 887 disconnected
> Jul 28 12:00:28  charon  
> 09[CFG] vici client 887 requests: list-sas
> Jul 28 12:00:28  charon  
> 09[CFG] vici client 887 registered for: list-sa
> Jul 28 12:00:28  charon  
> 07[CFG] vici client 887 connected
>
> What might be generating these log messages?

The IPsec status page and dashboard widget, when your logging level is
higher than default.
___
pfSense mailing list
https://lists.pfsense.org/mailman/listinfo/list
Support the project with Gold! https://pfsense.org/gold

[pfSense] IPSec log comments

2016-07-28 Thread Paul Galati 
I noted installed packages
I backed up my configuration xml, 2.2.4
I replaced hard disk with SSD
Installed fresh 32-bit 2.3.2
Installed packages
imported config

The 3 openvpn clients logged back in with no problem and tunneled VOIP phones 
logged back in as well.  My guest network was unable to reach the internet 
until I added a line to rules.  Not quite sure why it worked with 2.2.4 but did 
not in 2.3.2.  Nonetheless, the pass !LAN statement worked.  The only things I 
am noticing so far is that when I change any preference in the dashboard, the 
traffic graphs fall back to only showing the WAN traffic.  Resetting the 
traffic graph prefs works until I change a different dashboard pref.

The more important is the IPSec log file.  The only IPSec config is the mobile 
client.  Here is what I am seeing in the the log when no one is connected.


Jul 28 12:01:08  charon  
14[CFG] vici client 891 disconnected
Jul 28 12:01:08  charon  
14[CFG] vici client 891 requests: list-sas
Jul 28 12:01:08  charon  
10[CFG] vici client 891 registered for: list-sa
Jul 28 12:01:08  charon  
14[CFG] vici client 891 connected
Jul 28 12:01:02  charon  
08[CFG] vici client 890 disconnected
Jul 28 12:01:02  charon  
08[CFG] vici client 890 requests: list-sas
Jul 28 12:01:02  charon  
08[CFG] vici client 890 registered for: list-sa
Jul 28 12:01:02  charon  
14[CFG] vici client 890 connected
Jul 28 12:00:51  charon  
14[CFG] vici client 889 disconnected
Jul 28 12:00:51  charon  
08[CFG] vici client 889 requests: list-sas
Jul 28 12:00:51  charon  
08[CFG] vici client 889 registered for: list-sa
Jul 28 12:00:51  charon  
08[CFG] vici client 889 connected
Jul 28 12:00:44  charon  
08[CFG] vici client 888 disconnected
Jul 28 12:00:44  charon  
09[CFG] vici client 888 requests: list-sas
Jul 28 12:00:44  charon  
12[CFG] vici client 888 registered for: list-sa
Jul 28 12:00:44  charon  
12[CFG] vici client 888 connected
Jul 28 12:00:28  charon  
12[CFG] vici client 887 disconnected
Jul 28 12:00:28  charon  
09[CFG] vici client 887 requests: list-sas
Jul 28 12:00:28  charon  
09[CFG] vici client 887 registered for: list-sa
Jul 28 12:00:28  charon  
07[CFG] vici client 887 connected

What might be generating these log messages?  Googling did not bring anything 
specific on what it is or how it might be settled down, if it can be.

Thanks for your time.

P
___
pfSense mailing list
https://lists.pfsense.org/mailman/listinfo/list
Support the project with Gold! https://pfsense.org/gold