No outgoing UDP traffic
-
Hi all,
maybe I am too stupid , but …..
I am setting a new ipsec ike v2 tunnel on a fresh new 2.4.2-RELEASE-p1. Have done both Phase 1 and Phase 2 by the book.BUT, when i reload service, nothing happens .
following clog shows that the daemon is starting:Feb 16 04:26:10 gated ipsec_starter[58837]: Starting strongSwan 5.6.0 IPsec [starter]... Feb 16 04:26:10 gated ipsec_starter[58837]: no netkey IPsec stack detected Feb 16 04:26:10 gated ipsec_starter[58837]: no KLIPS IPsec stack detected Feb 16 04:26:10 gated ipsec_starter[58837]: no known IPsec stack detected, ignoring! Feb 16 04:26:10 gated charon: 00[DMN] Starting IKE charon daemon (strongSwan 5.6.0, FreeBSD 11.1-RELEASE-p6, amd64) ..... Feb 16 04:26:16 gated charon: 14[CFG] configured proposals: ESP:AES_CBC_256/HMAC_SHA2_256_128/NO_EXT_SEQ Feb 16 04:26:16 gated charon: 14[CHD] CHILD_SA con1{2} state change: CREATED => ROUTED Feb 16 04:26:16 gated ipsec_starter[59366]: 'con1' routed Feb 16 04:26:16 gated ipsec_starter[59366]:
… and nothing happens after initial start .
There is no traffic on interface , the tcpdump show nothing.After increasing the log levels, it's looks like some dependencies are missing :
Feb 16 04:38:46 gated charon: 00[LIB] feature PUBKEY:BLISS in plugin 'pem' has unmet dependency: PUBKEY:BLISS Feb 16 04:38:46 gated charon: 00[LIB] feature PUBKEY:DSA in plugin 'pem' has unmet dependency: PUBKEY:DSA Feb 16 04:38:46 gated charon: 00[LIB] feature PRIVKEY:DSA in plugin 'pem' has unmet dependency: PRIVKEY:DSA Feb 16 04:38:46 gated charon: 00[LIB] feature PRIVKEY:BLISS in plugin 'pem' has unmet dependency: PRIVKEY:BLISS Feb 16 04:38:46 gated charon: 00[LIB] feature CERT_DECODE:OCSP_REQUEST in plugin 'pem' has unmet dependency: CERT_DECODE:OCSP_REQUEST Feb 16 04:38:46 gated charon: 00[LIB] feature CUSTOM:sim-card in plugin 'eap-sim-file' has unmet dependency: CUSTOM:eap-sim-file-triplets Feb 16 04:38:46 gated charon: 00[LIB] feature CUSTOM:sim-provider in plugin 'eap-sim-file' has unmet dependency: CUSTOM:eap-sim-file-triplets Feb 16 04:38:46 gated charon: 00[LIB] unloading plugin 'eap-sim-file' without loaded features Feb 16 04:38:46 gated charon: 00[LIB] loaded plugins: charon unbound aes des blowfish rc2 sha2 sha1 md4 md5 random nonce x509 revocation constraints pubkey pkcs1 pkcs7 pkcs8 pkcs12 pgp dnskey sshkey ipseckey pem openssl fips-prf curve25519 xcbc cmac hmac curl attr kernel-pfkey kernel-pfroute resolve socket-default stroke vici updown eap-identity eap-sim eap-md5 eap-mschapv2 eap-dynamic eap-radius eap-tls eap-ttls eap-peap xauth-generic xauth-eap whitelist addrblock Feb 16 04:38:46 gated charon: 00[LIB] unable to load 8 plugin features (7 due to unmet dependencies)
right now I am lost, so any suggestion or help would be highly appreciated .
Zanon