Phase 2 expired before the phase 1 start to negociate

clxinfo

Hi guys there is my problem the phase 2 expired before the phase 1 start to negociate there is my log from the ipsecvpn

racoon: INFO: phase2 sa expired 70.50.xx.xx-70.55.xx.xx
Apr 28 10:06:33 racoon: INFO: phase2 sa deleted 70.50.xx.xx-70.55.xx.xx
Apr 28 10:06:32 racoon: INFO: phase2 sa expired 70.50.xx.xx-70.55.xx.xx
Apr 28 10:06:11 racoon: INFO: phase2 sa deleted 70.50.xx.xx-70.55.xx.xx
Apr 28 10:06:10 racoon: INFO: phase2 sa expired 70.50.xx.xx-70.55.xx.xx

but no phase 1 negociate before

there is my network

WAN1 (pfsense box with dynamic ip ipsec enable ) –> INTERNET--> WAN(pfsense box with static ip ipsec enable )

?? Help please they are in production

hoba

Please provide more info on your settings for the tunnel.

heiko

an issue on 1.2 please enable and disable ipsec so racoon will load again, in some situations the mobile side have not a racoon sighup but i think this will be adressed in an 1.21 release, i hope so

clxinfo

Thanks guys

I've already restart ipsec by disabled an enable the ipsec VPN but still nothing working any other alternative?

Thanks

hoba

@hoba:

Please provide more info on your settings for the tunnel.