From: gil ran <gilrun@gm...> - 2007-02-11 12:10:24
I'm using kernel 2.6.15 and ipsec-tools 0.6.6 (a linux-from-scratch
I am using trasport-mode with pre-shared keys. DPD is activated.
>From time to time some machine (not always the same one) gets
"disconnected" from the network - it gets `Resource temporarily
unavailable' whenever it tries to connect to another machine, and any
other machine gets `Resource temporarily unavailable' while trying to
connect to it. This is solved by flushing the SAD entries (using
I looked at the SAD entries, and it seems that the problematic machine
has entries for all the machines that tried to connect to it.
While this is happening, nothing gets written to racoon's log
(log-level is debug2).
I sniffed the communication of port 500 UDP, and found that the
machine doesn't reply to anything, and doesn't initiate negotiation
(in other word, nothing is sent through port 500 UDP, ISAKMP packets
I do not know what triggers this problem or how to reproduce it.
Any ideas on why this is happening, and how to avoid this?