Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Log filled with same message

    Scheduled Pinned Locked Moved IPsec
    4 Posts 2 Posters 592 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • B
      BarronC
      last edited by

      Config:

      rou1 IPV6 <----IPSEC (routed vti)----> H.E. IPv6 tunnel on rou2 wan

      Tunnel is up, passes traffic. Logs on both machines are filled with same message. Where should I look? I can't find anything explaining what these messages mean.
      Thanks

      Jan 20 21:04:37 charon 06[JOB] watcher going to poll() 6 fds
      Jan 20 21:04:37 charon 06[JOB] watcher got notification, rebuilding
      Jan 20 21:04:37 charon 06[JOB] watcher going to poll() 5 fds
      Jan 20 21:04:37 charon 06[JOB] watched FD 16 ready to read
      Jan 20 21:04:37 charon 06[JOB] watcher going to poll() 6 fds
      Jan 20 21:04:37 charon 06[JOB] watcher got notification, rebuilding
      Jan 20 21:04:37 charon 06[JOB] watcher going to poll() 5 fds
      Jan 20 21:04:37 charon 06[JOB] watched FD 16 ready to read

      DerelictD 1 Reply Last reply Reply Quote 0
      • DerelictD
        Derelict LAYER 8 Netgate @BarronC
        last edited by

        @barronc Sounds like you diddled with the default logging settings.

        VPN > IPsec, Advanced

        IKE SA, IKE Child SA, and Configuration Backend should be Diag. Everything else should be Control.

        Chattanooga, Tennessee, USA
        A comprehensive network diagram is worth 10,000 words and 15 conference calls.
        DO NOT set a source address/port in a port forward or firewall rule unless you KNOW you need it!
        Do Not Chat For Help! NO_WAN_EGRESS(TM)

        B 1 Reply Last reply Reply Quote 0
        • B
          BarronC @Derelict
          last edited by

          @derelict I changed them in order to try debug the connection earlier.
          Are you saying these entries are normal and there is no problem?

          Thanks

          DerelictD 1 Reply Last reply Reply Quote 0
          • DerelictD
            Derelict LAYER 8 Netgate @BarronC
            last edited by Derelict

            @barronc Yes but they look like log spam that would do nothing to help solve a problem at "normal" layers. I troubleshoot IPsec on pfSense all day every day and the aforementioned log settings give me everything I need.

            Chattanooga, Tennessee, USA
            A comprehensive network diagram is worth 10,000 words and 15 conference calls.
            DO NOT set a source address/port in a port forward or firewall rule unless you KNOW you need it!
            Do Not Chat For Help! NO_WAN_EGRESS(TM)

            1 Reply Last reply Reply Quote 0
            • First post
              Last post
            Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.