IPSEC connection drops and doesn't recover
David DeSimone
fox at verio.net
Wed Aug 1 22:55:38 UTC 2007
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Isaac Kohen <ik1024 at gmail.com> wrote:
>
> I get these in dmesg-- does it mean anything?
>
> IPv4 ESP input: no key association found for spi 94246771
> IPv4 ESP input: no key association found for spi 94246771
> IPv4 ESP input: no key association found for spi 94246771
> IPv4 ESP input: no key association found for spi 94246771
This means that your remote peer still believes that there is an
outstanding SA defined, and it is sending you encrypted packets that
your system does not understand.
As another poster reported, you may have some IKE session lifetime
discrepancies that you need to work out.
- --
David DeSimone == Network Admin == fox at verio.net
"It took me fifteen years to discover that I had no
talent for writing, but I couldn't give it up because
by that time I was too famous. -- Robert Benchley
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.1 (GNU/Linux)
iD8DBQFGsQ9oFSrKRjX5eCoRAqQfAJ4smgTABPRS78VuYqijWYK66msQ0ACfdqss
GUoaysrFP0ymHGz1UyvXiX4=
=u/uk
-----END PGP SIGNATURE-----
More information about the freebsd-net
mailing list