Hi all,
Can someone help me out? I'm using ASL 3.09 (latest release) and I'm connecting to a corporate network from behind the ASL with Nortel Contivity IPSEC Client.
It does connect fine and I can work with it BUT it drop the connection in a random manner... it can take between 5 and 60 min then the connection drop.
I have IPSEC anabled on the ASL BOX for incomming connections.... and I see in the IPSEC Logs the following records:
Oct 7 17:57:04 host Pluto[1574]: packet from 63.94.54.2:500: Quick Mode message is for a non-existent (expired?) ISAKMP SA
Oct 7 17:57:20 host Pluto[1574]: packet from 63.94.54.2:500: Informational Exchange is for an unknown (expired?) SA
Oct 7 17:57:20 host Pluto[1574]: packet from 63.94.54.2:500: Informational Exchange is for an unknown (expired?) SA
Oct 7 18:07:47 host Pluto[1574]: packet from 63.94.54.2:500: Quick Mode message is for a non-existent (expired?) ISAKMP SA
Oct 7 18:08:35 host Pluto[1574]: packet from 63.94.54.2:500: Quick Mode message is for a non-existent (expired?) ISAKMP SA
Oct 7 18:08:51 host Pluto[1574]: packet from 63.94.54.2:500: Informational Exchange is for an unknown (expired?) SA
Oct 7 18:08:51 host Pluto[1574]: packet from 63.94.54.2:500: Informational Exchange is for an unknown (expired?) SA
Oct 7 18:42:17 host Pluto[1574]: packet from 63.94.54.2:500: Quick Mode message is for a non-existent (expired?) ISAKMP SA
Oct 7 18:43:05 host Pluto[1574]: packet from 63.94.54.2:500: Quick Mode message is for a non-existent (expired?) ISAKMP SA
Oct 7 18:43:21 host Pluto[1574]: packet from 63.94.54.2:500: Informational Exchange is for an unknown (expired?) SA
Oct 7 18:43:21 host Pluto[1574]: packet from 63.94.54.2:500: Informational Exchange is for an unknown (expired?) SA
The time those error occur correspond AXACTLY with the time the contivity client drop the connection.
Any idea???
I'll try to turn of the ASL IPSEC to see if it does make a difference.
Martin Desormeaux, CCSI
Noxam Technologies Inc.
Astaro Partner
This thread was automatically locked due to age.
