Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Snort up and vanished …

    Scheduled Pinned Locked Moved 2.0-RC Snapshot Feedback and Problems - RETIRED
    3 Posts 2 Posters 1.8k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • B
      BenKenobe
      last edited by

      Updated tonight from last release of RC2 to 2.0-RC3 (i386) built on Mon Jul 4 09:48:55 EDT 2011.

      Snort has up and disappeared, not in installed application list, nor available application list. I cleaned out the config.xml thinking that would at least provoke the package to re-appear in available packages but it  hasn't.

      I updated because I am seeing these errors in IPSEC

      Jul 5 00:53:56 racoon: [Peer 1 SES Boxes]: [] ERROR: phase1 negotiation failed.
      Jul 5 00:53:56 racoon: [Peer 1 SES Boxes]: [
      ] ERROR: failed to pre-process ph1 packet [Check Phase 1 settings, lifetime, algorithm] (side: 1, status 1).
      Jul 5 00:53:56 racoon: [Peer 1 SES Boxes]: [**] ERROR: failed to get valid proposal.
      Jul 5 00:53:56 racoon: ERROR: no suitable proposal found.
      Jul 5 00:53:56 racoon: INFO: received Vendor ID: DPD
      Jul 5 00:53:56 racoon: INFO: begin Identity Protection mode.
      Jul 5 00:53:56 racoon: [Peer 1 SES Boxes]: INFO: respond new phase 1 negotiation: [500]<=>[500]

      the connection WORKS !!!! it is usable I can RDP into the foreign system and there are no connections available to it without using the VPN, I have an identical connection to a gateway one IP higher and it isn't reporting any error, I repeat the connection is fine, this error is spurious and incorrect and is repeating itself constantly every 4 seconds even though nothing on my LAN is trying to access the remote system (dead peer detection is disabled). This is the SECOND IPSEC to be defined and the lowest in the GUI display, the first in the list reports no errors. If I disable IPSEC I can't access the remote systems so something is messed up here.

      Questions : 1 Where has Snort gone and 2 what is wrong with IPSEC ?

      1 Reply Last reply Reply Quote 0
      • M
        mentalhemroids
        last edited by

        Already posted; here's the answer to snort.

        http://forum.pfsense.org/index.php/topic,38375.0.html :)

        don't know the other answer.

        1 Reply Last reply Reply Quote 0
        • B
          BenKenobe
          last edited by

          Thanks - I did do a search but never found that.

          The IPSEC issue remains and is a mystery …

          1 Reply Last reply Reply Quote 0
          • First post
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.