[strongSwan] Upgrading from 4.5.4 to 5.0.6 | MDS Ref#:0042238

Henry R. Prins HPrins at multidataservices.com
Thu Aug 15 20:54:50 CEST 2013 

I recently updated my centos box and strongswan 5.0.6 got installed via yum.

I have a site to site connection between two servers,  one is running 4.5.4 and the other is now running 5.0.6, before the update everything worked fine.  After I initiate the ipsec start,  I cannot ping through to the other side.   Is there something that needs to be put into the config or something that might have changed with iptables / ip route that I am missing ?



Ø  Ipsec statusall
Status of IKE charon daemon (strongSwan 5.0.4, Linux 2.6.32-358.14.1.el6.x86_64, x86_64):
  uptime: 13 seconds, since Aug 15 13:48:47 2013
  malloc: sbrk 389120, mmap 0, used 279120, free 110000
  worker threads: 6 of 16 idle, 9/1/0/0 working, job queue: 0/0/0/0, scheduled: 2
  loaded plugins: charon curl aes des sha1 sha2 md4 md5 random nonce x509 revocation constraints pubkey pkcs1 pkcs8 pgp dnskey pem openssl fips-prf gmp xcbc cmac hmac attr kernel-netlink resolve socket-default farp stroke updown eap-identity eap-md5 eap-gtc eap-mschapv2 eap-tls eap-ttls eap-peap xauth-generic xauth-eap dhcp
Listening IP addresses:
  10.84.58.2
  x.x.18.18
Connections:
         mds:  x.x.18.18...x.x.69.29  IKEv1
         mds:   local:  [x.x.18.18] uses pre-shared key authentication
         mds:   remote: [x.x.69.29] uses pre-shared key authentication
         mds:   child:  10.84.58.2/32 === 192.168.0.0/16 TUNNEL
        mds2:   child:  10.84.58.2/32 === 10.255.252.0/22 TUNNEL
Security Associations (1 up, 0 connecting):
         mds[1]: ESTABLISHED 13 seconds ago, x.x.18.18[x.x.18.18]...x.x.69.29[x.x.69.29]
         mds[1]: IKEv1 SPIs: 461994791f2ba475_i* afc0a895a0c5fc2f_r, pre-shared key reauthentication in 56 minutes
         mds[1]: IKE proposal: 3DES_CBC/HMAC_SHA1_96/PRF_HMAC_SHA1/MODP_1024


Sincerely,

Henry R. Prins Jr.
Software Support Specialist
888-325-8307

Click Here to Join the MDS Community!<http://www.multidataservices.com/forum/>
[Description: New MDS Logo]<http://www.multidataservices.com/>

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.strongswan.org/pipermail/users/attachments/20130815/44167789/attachment.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image001.jpg
Type: image/jpeg
Size: 9730 bytes
Desc: image001.jpg
URL: <http://lists.strongswan.org/pipermail/users/attachments/20130815/44167789/attachment.jpg>

More information about the Users mailing list