[strongSwan] Tunnel going down very frequently

Noel Kuntze noel at familie-kuntze.de
Fri Sep 9 11:19:12 CEST 2016 

Hello Sandeep,

No, don't increase verbosity. Just gather and send more logs. Also, disable reauthentication.


On 09.09.2016 11:17, sandeep dubey wrote:
> Thanks Noel for reply, 
> 
> Should i enabled debugging mode at both end and send the logs ? In mean time, i will try disabling the re-authentication.
> 
> On Fri, Sep 9, 2016 at 2:13 PM, Noel Kuntze <noel at familie-kuntze.de <mailto:noel at familie-kuntze.de>> wrote:
> 
>     Hello,
> 
>     It looks like the network connection breaks when the peers reauthenticate. Try disabling reauthentication.
>     The logs from us-east are useless, because they don't show what happens during the reauthentication.
> 
>     On 09.09.2016 03:03, sandeep dubey wrote:
>     > Hi,
>     >
>     > Any suggestions.
>     >
>     > On Thu, Sep 8, 2016 at 11:26 AM, sandeep dubey <sandeep.sanash at gmail.com <mailto:sandeep.sanash at gmail.com> <mailto:sandeep.sanash at gmail.com <mailto:sandeep.sanash at gmail.com>>> wrote:
>     >
>     >     Hi,
>     >
>     >     I am using strongswan to establish a vpn tunnel across AWS regions configured on EC2 instances. It was working fine for 2 month but facing issues when i resized the instances to lower config last week. The changes are reverted back to previous config for all the region when i started facing this issue.
>     >
>     >     Issue - vpn tunnel is going down very frequently (twice in approx an hour). This is happening in production env. and i am clueless what is happening.
>     >
>     >     Attaching the syslog and config for both ends. Have replaced left public ip with LPUBLIC-IP and right ip with RPUBLIC-IP.
>     >
>     >     OS : Ubuntu 14.04 LTS
>     >     Version : 5.1.2-0ubuntu2.4
>     >
>     >     --
>     >     Regards,
>     >     Sandeep
>     >
>     >
>     >
>     >
>     > --
>     > Regards,
>     > Sandeep
>     >
>     >
>     > _______________________________________________
>     > Users mailing list
>     > Users at lists.strongswan.org <mailto:Users at lists.strongswan.org>
>     > https://lists.strongswan.org/mailman/listinfo/users <https://lists.strongswan.org/mailman/listinfo/users>
>     >
> 
>     --
> 
>     Mit freundlichen Grüßen/Kind Regards,
>     Noel Kuntze
> 
>     GPG Key ID: 0x63EC6658
>     Fingerprint: 23CA BB60 2146 05E7 7278 6592 3839 298F 63EC 6658
> 
> 
> 
> 
> 
> -- 
> Regards,
> Sandeep

-- 

Mit freundlichen Grüßen/Kind Regards,
Noel Kuntze

GPG Key ID: 0x63EC6658
Fingerprint: 23CA BB60 2146 05E7 7278 6592 3839 298F 63EC 6658


-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: OpenPGP digital signature
URL: <http://lists.strongswan.org/pipermail/users/attachments/20160909/60d0885f/attachment-0001.sig>

More information about the Users mailing list