No outgoing UDP traffic



  • Hi all,
    maybe I am too stupid , but …..
    I am setting a new ipsec ike v2  tunnel on a fresh new 2.4.2-RELEASE-p1. Have done both Phase 1 and Phase 2 by the book.

    BUT,  when i reload service, nothing happens .
    following clog shows that the daemon is starting:

    Feb 16 04:26:10 gated ipsec_starter[58837]: Starting strongSwan 5.6.0 IPsec [starter]...
    Feb 16 04:26:10 gated ipsec_starter[58837]: no netkey IPsec stack detected
    Feb 16 04:26:10 gated ipsec_starter[58837]: no KLIPS IPsec stack detected
    Feb 16 04:26:10 gated ipsec_starter[58837]: no known IPsec stack detected, ignoring!
    Feb 16 04:26:10 gated charon: 00[DMN] Starting IKE charon daemon (strongSwan 5.6.0, FreeBSD 11.1-RELEASE-p6, amd64)
    .....
    Feb 16 04:26:16 gated charon: 14[CFG] configured proposals: ESP:AES_CBC_256/HMAC_SHA2_256_128/NO_EXT_SEQ
    Feb 16 04:26:16 gated charon: 14[CHD] CHILD_SA con1{2} state change: CREATED => ROUTED
    Feb 16 04:26:16 gated ipsec_starter[59366]: 'con1' routed
    Feb 16 04:26:16 gated ipsec_starter[59366]:
    
    

    … and nothing happens after initial start .
    There is no traffic on interface , the tcpdump show nothing.

    After increasing the log levels, it's looks like some dependencies are missing  :

    Feb 16 04:38:46 gated charon: 00[LIB] feature PUBKEY:BLISS in plugin 'pem' has unmet dependency: PUBKEY:BLISS
    Feb 16 04:38:46 gated charon: 00[LIB] feature PUBKEY:DSA in plugin 'pem' has unmet dependency: PUBKEY:DSA
    Feb 16 04:38:46 gated charon: 00[LIB] feature PRIVKEY:DSA in plugin 'pem' has unmet dependency: PRIVKEY:DSA
    Feb 16 04:38:46 gated charon: 00[LIB] feature PRIVKEY:BLISS in plugin 'pem' has unmet dependency: PRIVKEY:BLISS
    Feb 16 04:38:46 gated charon: 00[LIB] feature CERT_DECODE:OCSP_REQUEST in plugin 'pem' has unmet dependency: CERT_DECODE:OCSP_REQUEST
    Feb 16 04:38:46 gated charon: 00[LIB] feature CUSTOM:sim-card in plugin 'eap-sim-file' has unmet dependency: CUSTOM:eap-sim-file-triplets
    Feb 16 04:38:46 gated charon: 00[LIB] feature CUSTOM:sim-provider in plugin 'eap-sim-file' has unmet dependency: CUSTOM:eap-sim-file-triplets
    Feb 16 04:38:46 gated charon: 00[LIB] unloading plugin 'eap-sim-file' without loaded features
    Feb 16 04:38:46 gated charon: 00[LIB] loaded plugins: charon unbound aes des blowfish rc2 sha2 sha1 md4 md5 random nonce x509 revocation constraints pubkey pkcs1 pkcs7 pkcs8 pkcs12 pgp dnskey sshkey ipseckey pem openssl fips-prf curve25519 xcbc cmac hmac curl attr kernel-pfkey kernel-pfroute resolve socket-default stroke vici updown eap-identity eap-sim eap-md5 eap-mschapv2 eap-dynamic eap-radius eap-tls eap-ttls eap-peap xauth-generic xauth-eap whitelist addrblock
    Feb 16 04:38:46 gated charon: 00[LIB] unable to load 8 plugin features (7 due to unmet dependencies)
    

    right now I am lost, so any suggestion or help would be highly appreciated .
    Zanon


Log in to reply