Your message dated Thu, 04 Mar 2010 18:26:32 +0100
with message-id <[email protected]>
and subject line Re: racoon restart issue in road warrior mode
has caused the Debian Bug report #224967,
regarding racoon restart issue in road warrior mode
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
224967: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=224967
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Package: racoon
Version: 0.2.2-8
Severity: normal
Tags: sid
If racoon is set up to accept road warriors (passive on; generate_policy on),
racoon doesn't remove its owm SPD entries when being stopped. So if
racoon is restarted, it no longer maintains these entries so they will
eventually time out and ipsec stops working for those entries.
To reproduce:
- set up a gateway 1 to accept road warriors. Second gateway static.
- start ipsec connection from gateway 2 -> ping works.
- stop racoon on gateway 1. -> ping stops. Note that on gateway 1, the
SPD entries are still there.
- start racoon on gateway 1. -> ping resumes.
- after the SA timeout, the SPD entry will time out as well and won't be
regenerated. -> ping stops again.
--jochen
-- System Information:
Debian Release: testing/unstable
Architecture: alpha
Kernel: Linux ayse.bocc.de 2.6.0-test9-bk19 #18 Sat Nov 15 10:33:49 CET 2003
alpha
Locale: LANG=C, LC_CTYPE=C
Versions of packages racoon depends on:
ii ipsec-tools 0.2.2-8 IPsec tools for Linux
ii libc6.1 2.3.2.ds1-10 GNU C Library: Shared libraries an
-- no debconf information
--- End Message ---
--- Begin Message ---
i'm cleaning up old bugs and this is one for sure. I tried to
reproduce this with the current stable version 1:0.7.1-1.3+lenny2
and the SPD entries disappear instantly after racoon is stopped.
thanks
--
Stefan Bauer -----------------------------------------
PGP: E80A 50D5 2D46 341C A887 F05D 5C81 5858 DCEF 8C34
-------- plzk.de - Linux - because it works ----------
--- End Message ---
