[strongSwan] tunnel stuck, won’t seem to timeout and can’t manually delete either
FINLEY, DAVID BRIAN
df1672 at att.com
Wed Feb 2 16:42:39 CET 2022
Hello,
We’ve seen this issue a few times. A client connects to a our gateway (running strongswan 5.9.2), the client terminates the tunnel but the tunnel doesn’t get terminated or timeout on the gateway. The “client” is a driver so it may be that it just goes away without properly cleaning up, but it seems like after a few retries, Strongswan would eventually give up and terminate it. The re-key logic may be involved as I see CHILD REKEY and CHILD DELETE tasks shown in the “queued:” line in the swanctl –list-sas output. I attached a file with some pertinent info.
THx for any help.
Dave Finley
df1672 at att.com<mailto:df1672 at att.com>
(630) 719-4391 (desk)
(630) 740-5198 (mobile)
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.strongswan.org/pipermail/users/attachments/20220202/0399eab3/attachment-0001.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image001.gif
Type: image/gif
Size: 38294 bytes
Desc: image001.gif
URL: <http://lists.strongswan.org/pipermail/users/attachments/20220202/0399eab3/attachment-0001.gif>
-------------- next part --------------
An embedded and charset-unspecified text was scrubbed...
Name: stuck tunnel.txt
URL: <http://lists.strongswan.org/pipermail/users/attachments/20220202/0399eab3/attachment-0001.txt>
More information about the Users
mailing list