[strongSwan] site-to-site tunnel failing
Vernon Fort
vfort at provident-solutions.com
Tue Sep 17 14:43:47 CEST 2013
I have attached both ipsec.conf files. Any help would be great.
Vernon
From: users-bounces+vfort=provident-solutions.com at lists.strongswan.org [mailto:users-bounces+vfort=provident-solutions.com at lists.strongswan.org] On Behalf Of Vernon Fort
Sent: Monday, September 16, 2013 4:51 PM
To: users at lists.strongswan.org
Subject: [strongSwan] site-to-site tunnel failing
I have a site-to-site ipsec ikev1 tunnel, both strongswan and both Gentoo Linux kernel 3.10.7. Both have the same version of iptables. However, after about 1 hour, the tunnel rekeys and then no traffic is passed. I have to restart one or the other for the Child_sa to start. Is there something specific that I need to add to the configuration to keep the tunnel up and running. It does appears to be related to rekeying, it dies just after.
Vernon
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.strongswan.org/pipermail/users/attachments/20130917/46e3fc37/attachment.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: siteA-ipsec.conf
Type: application/octet-stream
Size: 333 bytes
Desc: siteA-ipsec.conf
URL: <http://lists.strongswan.org/pipermail/users/attachments/20130917/46e3fc37/attachment.obj>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: siteB-ipsec.conf
Type: application/octet-stream
Size: 319 bytes
Desc: siteB-ipsec.conf
URL: <http://lists.strongswan.org/pipermail/users/attachments/20130917/46e3fc37/attachment-0001.obj>
More information about the Users
mailing list