Hi all,
I clearly have to pay attention what I put into pf.conf!
Tunnel works fine so far.
//maxim
On Oct 16, 2011, at 1:40 PM, Maxim Bourmistrov wrote:
Both side are now 5.0-current, so this fix is already there.
However, tunnel timeout is still there.
In logs is see that almost exactly
Both side are now 5.0-current, so this fix is already there.
However, tunnel timeout is still there.
In logs is see that almost exactly 3h later after tunnel is established it
dies.
I see FLOW is still there, bud SAD is empty, then I run ipsecctl -s all.
According to the manpage, less than 3h is
Thanks for your replay, Trevor!
Yes, indeed, PF was the case here.
Except pass on enc0 from any to any keep state (if-bound), I also decided to
pass all ESP traffic.
Tunnel, however, sometimes times out. Not sure about the reason for this yet.
//maxim
On Oct 14, 2011, at 9:24 PM, Trevor Benson
On Sat, Oct 15, 2011 at 12:13 PM, Maxim Bourmistrov
m...@alumni.chalmers.sewrote:
Thanks for your replay, Trevor!
Yes, indeed, PF was the case here.
Except pass on enc0 from any to any keep state (if-bound), I also decided
to
pass all ESP traffic.
Tunnel, however, sometimes times out. Not
Hi all,
problem is still there.
Both sides are -current now (Oct 6 build).
Any ideas what is wrong?
//maxim
On Oct 14, 2011, at 5:27 AM, Maxim Bourmistrov wrote:
Hi all,
problem is still there.
Both sides are -current now (Oct 6 build).
Any ideas what is wrong?
//maxim
Have you looked at your pf ruleset on both sides of the tunnel? Are you using
blanket allow rules for ipsec traffic? E.G.
Hi misc@,
I'm trying to understand why my IPSec tunnel not functioning as expected and
especially
why packets start flow as soon as I start to ping from the opposite side.
Hopefully someone can explain what is going on and why.
Following setup:
Network Home(1.1.1.0/25) connecting to the
2011/10/13 Maxim Bourmistrov m...@alumni.chalmers.se:
Hi misc@,
I'm trying to understand why my IPSec tunnel not functioning as expected
and
especially
why packets start flow as soon as I start to ping from the opposite side.
Hopefully someone can explain what is going on and why.
This is iked (IKEv2). No patches, plain from dist.
On Oct 13, 2011, at 12:38 PM, Johan Ryberg wrote:
2011/10/13 Maxim Bourmistrov m...@alumni.chalmers.se:
Hi misc@,
I'm trying to understand why my IPSec tunnel not functioning as expected
and
especially
why packets start flow as soon as I
As Johan suggested, I'd bring both side in sync first.
Looks like both iked and isakmpd got patched.
//maxim
On Oct 13, 2011, at 12:38 PM, Johan Ryberg wrote:
2011/10/13 Maxim Bourmistrov m...@alumni.chalmers.se:
Hi misc@,
I'm trying to understand why my IPSec tunnel not functioning as
10 matches
Mail list logo
