[strongSwan] Tunnel failing when rekeying

Dusan Ilic dusan at comhem.se
Thu May 11 20:14:22 CEST 2017 

Hi everyone,

Someone care to explain why this tunnel always fail after rekey?
It works again when I down and up the tunnel manually.

May 11 08:37:04 10[IKE] <azure|2> authentication of '137.135.x.x' with 
pre-shared key successful
May 11 08:37:04 10[IKE] <azure|2> authentication of '85.24.x.x' (myself) 
with pre-shared key
May 11 08:37:04 10[IKE] <azure|2> successfully created shared key MAC
May 11 08:37:04 10[IKE] <azure|2> IKE_SA azure[2] established between 
85.24.x.x[85.24.x.x]...137.135.x.x[137.135.x.x]
May 11 08:37:04 10[IKE] <azure|2> IKE_SA azure[2] state change: 
CONNECTING => ESTABLISHED
May 11 08:37:04 10[IKE] <azure|2> scheduling rekeying in 28182s
May 11 08:37:04 10[IKE] <azure|2> maximum IKE_SA lifetime 28722s
May 11 08:37:04 10[IKE] <azure|2> CHILD_SA azure{5} established with 
SPIs cbf4ad11_i 25a1672e_o and TS 10.1.1.0/26 === 10.0.1.0/24
May 11 15:44:10 07[IKE] <azure|2> no acceptable proposal found
May 11 15:44:10 07[IKE] <azure|2> failed to establish CHILD_SA, keeping 
IKE_SA
May 11 15:44:35 09[IKE] <azure|2> received DELETE for ESP CHILD_SA with 
SPI 25a1672e
May 11 15:44:35 09[IKE] <azure|2> closing CHILD_SA azure{5} with SPIs 
cbf4ad11_i (14512 bytes) 25a1672e_o (704 bytes) and TS 10.1.1.0/26 === 
10.0.1.0/24
May 11 15:44:35 09[IKE] <azure|2> sending DELETE for ESP CHILD_SA with 
SPI cbf4ad11
May 11 15:44:35 09[IKE] <azure|2> CHILD_SA closed
May 11 15:46:11 15[IKE] <azure|2> traffic selectors 10.1.1.0/26 === 
10.0.1.0/24 inacceptable
May 11 15:46:11 15[IKE] <azure|2> failed to establish CHILD_SA, keeping 
IKE_SA
May 11 15:48:11 14[IKE] <azure|2> traffic selectors 10.1.1.0/26 === 
10.0.1.0/24 inacceptable
May 11 15:48:11 14[IKE] <azure|2> failed to establish CHILD_SA, keeping 
IKE_SA
May 11 15:50:11 13[IKE] <azure|2> traffic selectors 10.1.1.0/26 === 
10.0.1.0/24 inacceptable
May 11 15:50:11 13[IKE] <azure|2> failed to establish CHILD_SA, keeping 
IKE_SA
May 11 15:52:11 10[IKE] <azure|2> traffic selectors 10.1.1.0/26 === 
10.0.1.0/24 inacceptable
May 11 15:52:11 10[IKE] <azure|2> failed to establish CHILD_SA, keeping 
IKE_SA
May 11 15:54:11 06[IKE] <azure|2> traffic selectors 10.1.1.0/26 === 
10.0.1.0/24 inacceptable
May 11 15:54:11 06[IKE] <azure|2> failed to establish CHILD_SA, keeping 
IKE_SA
May 11 15:56:11 16[IKE] <azure|2> traffic selectors 10.1.1.0/26 === 
10.0.1.0/24 inacceptable
May 11 15:56:11 16[IKE] <azure|2> failed to establish CHILD_SA, keeping 
IKE_SA
May 11 15:58:11 13[IKE] <azure|2> traffic selectors 10.1.1.0/26 === 
10.0.1.0/24 inacceptable
May 11 15:58:11 13[IKE] <azure|2> failed to establish CHILD_SA, keeping 
IKE_SA
May 11 16:00:11 09[IKE] <azure|2> traffic selectors 10.1.1.0/26 === 
10.0.1.0/24 inacceptable
May 11 16:00:11 09[IKE] <azure|2> failed to establish CHILD_SA, keeping 
IKE_SA
May 11 16:02:11 07[IKE] <azure|2> traffic selectors 10.1.1.0/26 === 
10.0.1.0/24 inacceptable
May 11 16:02:11 07[IKE] <azure|2> failed to establish CHILD_SA, keeping 
IKE_SA
May 11 16:04:11 16[IKE] <azure|2> traffic selectors 10.1.1.0/26 === 
10.0.1.0/24 inacceptable
May 11 16:04:11 16[IKE] <azure|2> failed to establish CHILD_SA, keeping 
IKE_SA
May 11 16:06:11 08[IKE] <azure|2> traffic selectors 10.1.1.0/26 === 
10.0.1.0/24 inacceptable
May 11 16:06:11 08[IKE] <azure|2> failed to establish CHILD_SA, keeping 
IKE_SA
May 11 16:08:11 06[IKE] <azure|2> traffic selectors 10.1.1.0/26 === 
10.0.1.0/24 inacceptable
May 11 16:08:11 06[IKE] <azure|2> failed to establish CHILD_SA, keeping 
IKE_SA
May 11 16:10:11 15[IKE] <azure|2> traffic selectors 10.1.1.0/26 === 
10.0.1.0/24 inacceptable
May 11 16:10:11 15[IKE] <azure|2> failed to establish CHILD_SA, keeping 
IKE_SA
May 11 16:12:11 14[IKE] <azure|2> traffic selectors 10.1.1.0/26 === 
10.0.1.0/24 inacceptable
May 11 16:12:11 14[IKE] <azure|2> failed to establish CHILD_SA, keeping 
IKE_SA
May 11 16:13:05 11[IKE] <azure|2> 137.135.x.x is initiating an IKE_SA
May 11 16:13:05 11[IKE] <azure|2> IKE_SA azure[17] state change: CREATED 
=> CONNECTING
May 11 16:13:05 11[IKE] <azure|2> IKE_SA azure[17] state change: 
CONNECTING => ESTABLISHED
May 11 16:13:05 11[IKE] <azure|2> scheduling rekeying in 27745s
May 11 16:13:05 11[IKE] <azure|2> maximum IKE_SA lifetime 28285s
May 11 16:13:05 11[IKE] <azure|2> IKE_SA azure[17] rekeyed between 
85.24.x.x[85.24.x.x]...137.135.x.x[137.135.x.x]
May 11 16:13:05 11[IKE] <azure|2> IKE_SA azure[2] state change: 
ESTABLISHED => REKEYED
May 11 16:13:05 16[IKE] <azure|2> received DELETE for IKE_SA azure[2]
May 11 16:13:05 16[IKE] <azure|2> deleting IKE_SA azure[2] between 
85.24.x.x[85.24.x.x]...137.135.x.x[137.135.x.x]
May 11 16:13:05 16[IKE] <azure|2> IKE_SA azure[2] state change: REKEYED 
=> DELETING
May 11 16:13:05 16[IKE] <azure|2> IKE_SA deleted
May 11 16:13:05 16[IKE] <azure|2> IKE_SA azure[2] state change: DELETING 
=> DESTROYING
May 11 16:14:11 16[IKE] <azure|17> traffic selectors 10.1.1.0/26 === 
10.0.1.0/24 inacceptable
May 11 16:14:11 16[IKE] <azure|17> failed to establish CHILD_SA, keeping 
IKE_SA
May 11 16:16:11 07[IKE] <azure|17> traffic selectors 10.1.1.0/26 === 
10.0.1.0/24 inacceptable
May 11 16:16:11 07[IKE] <azure|17> failed to establish CHILD_SA, keeping 
IKE_SA
May 11 16:18:11 15[IKE] <azure|17> traffic selectors 10.1.1.0/26 === 
10.0.1.0/24 inacceptable
May 11 16:18:11 15[IKE] <azure|17> failed to establish CHILD_SA, keeping 
IKE_SA
May 11 16:20:11 15[IKE] <azure|17> traffic selectors 10.1.1.0/26 === 
10.0.1.0/24 inacceptable
May 11 16:20:11 15[IKE] <azure|17> failed to establish CHILD_SA, keeping 
IKE_SA
May 11 16:22:11 08[IKE] <azure|17> traffic selectors 10.1.1.0/26 === 
10.0.1.0/24 inacceptable
May 11 16:22:11 08[IKE] <azure|17> failed to establish CHILD_SA, keeping 
IKE_SA
May 11 16:24:11 10[IKE] <azure|17> traffic selectors 10.1.1.0/26 === 
10.0.1.0/24 inacceptable
May 11 16:24:11 10[IKE] <azure|17> failed to establish CHILD_SA, keeping 
IKE_SA
May 11 16:26:11 13[IKE] <azure|17> traffic selectors 10.1.1.0/26 === 
10.0.1.0/24 inacceptable
May 11 16:26:11 13[IKE] <azure|17> failed to establish CHILD_SA, keeping 
IKE_SA
May 11 16:28:11 15[IKE] <azure|17> traffic selectors 10.1.1.0/26 === 
10.0.1.0/24 inacceptable
May 11 16:28:11 15[IKE] <azure|17> failed to establish CHILD_SA, keeping 
IKE_SA
May 11 16:30:11 07[IKE] <azure|17> traffic selectors 10.1.1.0/26 === 
10.0.1.0/24 inacceptable
May 11 16:30:11 07[IKE] <azure|17> failed to establish CHILD_SA, keeping 
IKE_SA
May 11 16:32:11 10[IKE] <azure|17> traffic selectors 10.1.1.0/26 === 
10.0.1.0/24 inacceptable
May 11 16:32:11 10[IKE] <azure|17> failed to establish CHILD_SA, keeping 
IKE_SA
May 11 16:34:11 10[IKE] <azure|17> traffic selectors 10.1.1.0/26 === 
10.0.1.0/24 inacceptable
May 11 16:34:11 10[IKE] <azure|17> failed to establish CHILD_SA, keeping 
IKE_SA
May 11 16:36:11 06[IKE] <azure|17> traffic selectors 10.1.1.0/26 === 
10.0.1.0/24 inacceptable
May 11 16:36:11 06[IKE] <azure|17> failed to establish CHILD_SA, keeping 
IKE_SA
May 11 16:38:11 13[IKE] <azure|17> traffic selectors 10.1.1.0/26 === 
10.0.1.0/24 inacceptable
May 11 16:38:11 13[IKE] <azure|17> failed to establish CHILD_SA, keeping 
IKE_SA
May 11 16:40:11 13[IKE] <azure|17> traffic selectors 10.1.1.0/26 === 
10.0.1.0/24 inacceptable
May 11 16:40:11 13[IKE] <azure|17> failed to establish CHILD_SA, keeping 
IKE_SA
May 11 16:42:11 11[IKE] <azure|17> traffic selectors 10.1.1.0/26 === 
10.0.1.0/24 inacceptable
May 11 16:42:11 11[IKE] <azure|17> failed to establish CHILD_SA, keeping 
IKE_SA
May 11 16:44:11 06[IKE] <azure|17> traffic selectors 10.1.1.0/26 === 
10.0.1.0/24 inacceptable
May 11 16:44:11 06[IKE] <azure|17> failed to establish CHILD_SA, keeping 
IKE_SA
May 11 16:46:11 15[IKE] <azure|17> traffic selectors 10.1.1.0/26 === 
10.0.1.0/24 inacceptable
May 11 16:46:11 15[IKE] <azure|17> failed to establish CHILD_SA, keeping 
IKE_SA
May 11 16:48:11 11[IKE] <azure|17> traffic selectors 10.1.1.0/26 === 
10.0.1.0/24 inacceptable
May 11 16:48:11 11[IKE] <azure|17> failed to establish CHILD_SA, keeping 
IKE_SA
May 11 16:50:11 13[IKE] <azure|17> traffic selectors 10.1.1.0/26 === 
10.0.1.0/24 inacceptable
May 11 16:50:11 13[IKE] <azure|17> failed to establish CHILD_SA, keeping 
IKE_SA
May 11 16:52:11 08[IKE] <azure|17> traffic selectors 10.1.1.0/26 === 
10.0.1.0/24 inacceptable
May 11 16:52:11 08[IKE] <azure|17> failed to establish CHILD_SA, keeping 
IKE_SA
May 11 16:54:11 09[IKE] <azure|17> traffic selectors 10.1.1.0/26 === 
10.0.1.0/24 inacceptable
May 11 16:54:11 09[IKE] <azure|17> failed to establish CHILD_SA, keeping 
IKE_SA
May 11 16:56:11 14[IKE] <azure|17> traffic selectors 10.1.1.0/26 === 
10.0.1.0/24 inacceptable
May 11 16:56:11 14[IKE] <azure|17> failed to establish CHILD_SA, keeping 
IKE_SA
May 11 16:58:11 12[IKE] <azure|17> traffic selectors 10.1.1.0/26 === 
10.0.1.0/24 inacceptable
May 11 16:58:11 12[IKE] <azure|17> failed to establish CHILD_SA, keeping 
IKE_SA
May 11 17:00:12 09[IKE] <azure|17> traffic selectors 10.1.1.0/26 === 
10.0.1.0/24 inacceptable
May 11 17:00:12 09[IKE] <azure|17> failed to establish CHILD_SA, keeping 
IKE_SA
May 11 17:02:12 15[IKE] <azure|17> traffic selectors 10.1.1.0/26 === 
10.0.1.0/24 inacceptable
May 11 17:02:12 15[IKE] <azure|17> failed to establish CHILD_SA, keeping 
IKE_SA
May 11 17:04:12 11[IKE] <azure|17> traffic selectors 10.1.1.0/26 === 
10.0.1.0/24 inacceptable
May 11 17:04:12 11[IKE] <azure|17> failed to establish CHILD_SA, keeping 
IKE_SA
May 11 17:06:12 06[IKE] <azure|17> traffic selectors 10.1.1.0/26 === 
10.0.1.0/24 inacceptable
May 11 17:06:12 06[IKE] <azure|17> failed to establish CHILD_SA, keeping 
IKE_SA
May 11 17:08:12 08[IKE] <azure|17> traffic selectors 10.1.1.0/26 === 
10.0.1.0/24 inacceptable
May 11 17:08:12 08[IKE] <azure|17> failed to establish CHILD_SA, keeping 
IKE_SA
May 11 17:10:12 15[IKE] <azure|17> traffic selectors 10.1.1.0/26 === 
10.0.1.0/24 inacceptable
May 11 17:10:12 15[IKE] <azure|17> failed to establish CHILD_SA, keeping 
IKE_SA
May 11 17:12:12 08[IKE] <azure|17> traffic selectors 10.1.1.0/26 === 
10.0.1.0/24 inacceptable
May 11 17:12:12 08[IKE] <azure|17> failed to establish CHILD_SA, keeping 
IKE_SA
May 11 17:14:12 16[IKE] <azure|17> traffic selectors 10.1.1.0/26 === 
10.0.1.0/24 inacceptable
May 11 17:14:12 16[IKE] <azure|17> failed to establish CHILD_SA, keeping 
IKE_SA
May 11 17:16:12 07[IKE] <azure|17> traffic selectors 10.1.1.0/26 === 
10.0.1.0/24 inacceptable
May 11 17:16:12 07[IKE] <azure|17> failed to establish CHILD_SA, keeping 
IKE_SA
May 11 17:18:12 07[IKE] <azure|17> traffic selectors 10.1.1.0/26 === 
10.0.1.0/24 inacceptable
May 11 17:18:12 07[IKE] <azure|17> failed to establish CHILD_SA, keeping 
IKE_SA
May 11 17:20:12 12[IKE] <azure|17> traffic selectors 10.1.1.0/26 === 
10.0.1.0/24 inacceptable
May 11 17:20:12 12[IKE] <azure|17> failed to establish CHILD_SA, keeping 
IKE_SA
May 11 17:22:12 15[IKE] <azure|17> traffic selectors 10.1.1.0/26 === 
10.0.1.0/24 inacceptable
May 11 17:22:12 15[IKE] <azure|17> failed to establish CHILD_SA, keeping 
IKE_SA
May 11 17:24:12 14[IKE] <azure|17> traffic selectors 10.1.1.0/26 === 
10.0.1.0/24 inacceptable
May 11 17:24:12 14[IKE] <azure|17> failed to establish CHILD_SA, keeping 
IKE_SA
May 11 17:26:12 11[IKE] <azure|17> traffic selectors 10.1.1.0/26 === 
10.0.1.0/24 inacceptable
May 11 17:26:12 11[IKE] <azure|17> failed to establish CHILD_SA, keeping 
IKE_SA
May 11 17:28:12 16[IKE] <azure|17> traffic selectors 10.1.1.0/26 === 
10.0.1.0/24 inacceptable
May 11 17:28:12 16[IKE] <azure|17> failed to establish CHILD_SA, keeping 
IKE_SA
May 11 17:30:12 07[IKE] <azure|17> traffic selectors 10.1.1.0/26 === 
10.0.1.0/24 inacceptable
May 11 17:30:12 07[IKE] <azure|17> failed to establish CHILD_SA, keeping 
IKE_SA
May 11 17:32:12 07[IKE] <azure|17> traffic selectors 10.1.1.0/26 === 
10.0.1.0/24 inacceptable
May 11 17:32:12 07[IKE] <azure|17> failed to establish CHILD_SA, keeping 
IKE_SA
May 11 17:34:12 07[IKE] <azure|17> traffic selectors 10.1.1.0/26 === 
10.0.1.0/24 inacceptable
May 11 17:34:12 07[IKE] <azure|17> failed to establish CHILD_SA, keeping 
IKE_SA
May 11 17:36:12 09[IKE] <azure|17> traffic selectors 10.1.1.0/26 === 
10.0.1.0/24 inacceptable
May 11 17:36:12 09[IKE] <azure|17> failed to establish CHILD_SA, keeping 
IKE_SA
May 11 17:38:12 06[IKE] <azure|17> traffic selectors 10.1.1.0/26 === 
10.0.1.0/24 inacceptable
May 11 17:38:12 06[IKE] <azure|17> failed to establish CHILD_SA, keeping 
IKE_SA
May 11 17:40:12 08[IKE] <azure|17> traffic selectors 10.1.1.0/26 === 
10.0.1.0/24 inacceptable
May 11 17:40:12 08[IKE] <azure|17> failed to establish CHILD_SA, keeping 
IKE_SA
May 11 17:42:12 06[IKE] <azure|17> traffic selectors 10.1.1.0/26 === 
10.0.1.0/24 inacceptable
May 11 17:42:12 06[IKE] <azure|17> failed to establish CHILD_SA, keeping 
IKE_SA
May 11 17:44:12 06[IKE] <azure|17> traffic selectors 10.1.1.0/26 === 
10.0.1.0/24 inacceptable
May 11 17:44:12 06[IKE] <azure|17> failed to establish CHILD_SA, keeping 
IKE_SA
May 11 17:46:12 12[IKE] <azure|17> traffic selectors 10.1.1.0/26 === 
10.0.1.0/24 inacceptable
May 11 17:46:12 12[IKE] <azure|17> failed to establish CHILD_SA, keeping 
IKE_SA
May 11 17:48:12 07[IKE] <azure|17> traffic selectors 10.1.1.0/26 === 
10.0.1.0/24 inacceptable
May 11 17:48:12 07[IKE] <azure|17> failed to establish CHILD_SA, keeping 
IKE_SA
May 11 17:50:12 08[IKE] <azure|17> traffic selectors 10.1.1.0/26 === 
10.0.1.0/24 inacceptable
May 11 17:50:12 08[IKE] <azure|17> failed to establish CHILD_SA, keeping 
IKE_SA
May 11 17:52:12 06[IKE] <azure|17> traffic selectors 10.1.1.0/26 === 
10.0.1.0/24 inacceptable
May 11 17:52:12 06[IKE] <azure|17> failed to establish CHILD_SA, keeping 
IKE_SA
May 11 17:54:12 08[IKE] <azure|17> traffic selectors 10.1.1.0/26 === 
10.0.1.0/24 inacceptable
May 11 17:54:12 08[IKE] <azure|17> failed to establish CHILD_SA, keeping 
IKE_SA
May 11 17:56:12 14[IKE] <azure|17> traffic selectors 10.1.1.0/26 === 
10.0.1.0/24 inacceptable
May 11 17:56:12 14[IKE] <azure|17> failed to establish CHILD_SA, keeping 
IKE_SA
May 11 17:58:12 15[IKE] <azure|17> traffic selectors 10.1.1.0/26 === 
10.0.1.0/24 inacceptable
May 11 17:58:12 15[IKE] <azure|17> failed to establish CHILD_SA, keeping 
IKE_SA
May 11 18:00:12 13[IKE] <azure|17> traffic selectors 10.1.1.0/26 === 
10.0.1.0/24 inacceptable
May 11 18:00:12 13[IKE] <azure|17> failed to establish CHILD_SA, keeping 
IKE_SA
May 11 18:02:12 09[IKE] <azure|17> traffic selectors 10.1.1.0/26 === 
10.0.1.0/24 inacceptable
May 11 18:02:12 09[IKE] <azure|17> failed to establish CHILD_SA, keeping 
IKE_SA
May 11 18:04:12 14[IKE] <azure|17> traffic selectors 10.1.1.0/26 === 
10.0.1.0/24 inacceptable
May 11 18:04:12 14[IKE] <azure|17> failed to establish CHILD_SA, keeping 
IKE_SA
May 11 18:04:31 13[IKE] <azure|17> queueing CHILD_CREATE task
May 11 18:04:31 13[IKE] <azure|17> activating new tasks
May 11 18:04:31 13[IKE] <azure|17>   activating CHILD_CREATE task
May 11 18:04:31 13[IKE] <azure|17> establishing CHILD_SA azure{3}
May 11 18:04:31 06[IKE] <azure|17> received NO_PROPOSAL_CHOSEN notify, 
no CHILD_SA built
May 11 18:04:31 06[IKE] <azure|17> failed to establish CHILD_SA, keeping 
IKE_SA
May 11 18:04:31 06[IKE] <azure|17> activating new tasks
May 11 18:04:31 06[IKE] <azure|17> nothing to initiate

More information about the Users mailing list