Hi, still hunting down a problem with my ipsec vpn connection terminating, I found inconsistencies in
/var/run/isakmpd.result when I do a echo S >/var/run/isakmpd.fifo Occationally I find an entry where the destination address and the SA name do not match. The dst address displayed actually belongs to a diffent SA. I these cases, I only have phase 2 SAs for this particular vpn in the dump of SAs. netstat -rnfencap or ipsecctl -ssa do not show this vpn's sa any more. ping to a host in the peer network gives ' no route to network'. I can recover with echo 't quick <wrong ip address>' >/var/run/isakmpd.fifo echo 'c <vpn-name>' >/var/run/isakmpd.fifo Is there anything known about such behaviour ? Thanks Christoph Mit freundlichen Gr|_en Christoph Leser S&P Computersysteme GmbH Systemhaus f|r Logistik Tel: 0711 726410 Mail: [EMAIL PROTECTED] Amtsgericht Stuttgart HRB 11921 Geschdftsf|hrer J|rgen Probst, Horst Reichert