[gelöst] IPsec Abruch der Verbindung



  • Hallo zusammen!

    Die pfSense zeigt einen stabilen Tunnel an. Sobald ich jedoch Daten kopiere, läuft der Transfer kurz mit normaler Geschwindigkeit, dann geht diese auf null zurück. Danach bricht die VPN Verbindung ganz zusammen. Hier die zugehörigen Logs …

    Oct 27 21:35:49 charon: 09[NET] error writing to socket: Operation not permitted 
    Oct 27 21:35:49 charon: 02[NET] <con1000|1>sending packet: from <myip>[500] to <remoteip>[500] (92 bytes) 
    Oct 27 21:35:49 charon: 02[ENC] <con1000|1>generating INFORMATIONAL_V1 request 2125349117 [ HASH N(DPD) ] 
    Oct 27 21:35:49 charon: 02[IKE] <con1000|1>sending DPD request 
    Oct 27 21:35:49 charon: 02[IKE] <con1000|1>sending DPD request 
    Oct 27 21:35:34 charon: 09[NET] error writing to socket: Operation not permitted 
    Oct 27 21:35:34 charon: 02[NET] <con1000|1>sending packet: from <myip>[500] to <remoteip>[500] (92 bytes) 
    Oct 27 21:35:34 charon: 02[ENC] <con1000|1>generating INFORMATIONAL_V1 request 343703282 [ HASH N(DPD) ] 
    Oct 27 21:35:34 charon: 02[IKE] <con1000|1>sending DPD request 
    Oct 27 21:35:34 charon: 02[IKE] <con1000|1>sending DPD request 
    Oct 27 21:35:19 charon: 09[NET] error writing to socket: Operation not permitted 
    Oct 27 21:35:19 charon: 02[NET] <con1000|1>sending packet: from <myip>[500] to <remoteip>[500] (92 bytes) 
    Oct 27 21:35:19 charon: 02[ENC] <con1000|1>generating INFORMATIONAL_V1 request 294496106 [ HASH N(DPD) ] 
    Oct 27 21:35:19 charon: 02[IKE] <con1000|1>sending DPD request 
    Oct 27 21:35:19 charon: 02[IKE] <con1000|1>sending DPD request 
    Oct 27 21:35:04 charon: 02[NET] <con1000|1>sending packet: from <myip>[500] to <remoteip>[500] (92 bytes) 
    Oct 27 21:35:04 charon: 02[ENC] <con1000|1>generating INFORMATIONAL_V1 request 355317682 [ HASH N(DPD_ACK) ] 
    Oct 27 21:35:04 charon: 02[ENC] <con1000|1>parsed INFORMATIONAL_V1 request 3220383361 [ HASH N(DPD) ] 
    Oct 27 21:35:04 charon: 02[NET] <con1000|1>received packet: from <remoteip>[500] to <myip>[500] (92 bytes) 
    Oct 27 21:34:49 charon: 02[NET] <con1000|1>sending packet: from <myip>[500] to <remoteip>[500] (92 bytes) 
    Oct 27 21:34:49 charon: 02[ENC] <con1000|1>generating INFORMATIONAL_V1 request 4204289940 [ HASH N(DPD_ACK) ] 
    Oct 27 21:34:49 charon: 02[ENC] <con1000|1>parsed INFORMATIONAL_V1 request 2036567549 [ HASH N(DPD) ] 
    Oct 27 21:34:49 charon: 02[NET] <con1000|1>received packet: from <remoteip>[500] to <myip>[500] (92 bytes) 
    Oct 27 21:34:34 charon: 02[NET] <con1000|1>sending packet: from <myip>[500] to <remoteip>[500] (92 bytes) 
    Oct 27 21:34:34 charon: 02[ENC] <con1000|1>generating INFORMATIONAL_V1 request 4010401824 [ HASH N(DPD_ACK) ] 
    Oct 27 21:34:34 charon: 02[ENC] <con1000|1>parsed INFORMATIONAL_V1 request 2243944509 [ HASH N(DPD) ] 
    Oct 27 21:34:34 charon: 02[NET] <con1000|1>received packet: from <remoteip>[500] to <myip>[500] (92 bytes) 
    Oct 27 21:34:19 charon: 02[NET] <con1000|1>sending packet: from <myip>[500] to <remoteip>[500] (92 bytes) 
    Oct 27 21:34:19 charon: 02[ENC] <con1000|1>generating INFORMATIONAL_V1 request 3191514758 [ HASH N(DPD_ACK) ] 
    Oct 27 21:34:19 charon: 02[ENC] <con1000|1>parsed INFORMATIONAL_V1 request 875114044 [ HASH N(DPD) ] 
    Oct 27 21:34:19 charon: 02[NET] <con1000|1>received packet: from <remoteip>[500] to <myip>[500] (92 bytes) 
    Oct 27 21:34:04 charon: 02[NET] <con1000|1>sending packet: from <myip>[500] to <remoteip>[500] (92 bytes) 
    Oct 27 21:34:04 charon: 02[ENC] <con1000|1>generating INFORMATIONAL_V1 request 4287683161 [ HASH N(DPD_ACK) ] 
    Oct 27 21:34:04 charon: 02[ENC] <con1000|1>parsed INFORMATIONAL_V1 request 395602902 [ HASH N(DPD) ] 
    Oct 27 21:34:04 charon: 02[NET] <con1000|1>received packet: from <remoteip>[500] to <myip>[500] (92 bytes) 
    Oct 27 21:33:49 charon: 02[NET] <con1000|1>sending packet: from <myip>[500] to <remoteip>[500] (92 bytes) 
    Oct 27 21:33:49 charon: 02[ENC] <con1000|1>generating INFORMATIONAL_V1 request 4258242963 [ HASH N(DPD_ACK) ] 
    Oct 27 21:33:49 charon: 02[ENC] <con1000|1>parsed INFORMATIONAL_V1 request 644101945 [ HASH N(DPD) ] 
    Oct 27 21:33:49 charon: 02[NET] <con1000|1>received packet: from <remoteip>[500] to <myip>[500] (92 bytes) 
    Oct 27 21:33:34 charon: 04[NET] <con1000|1>sending packet: from <myip>[500] to <remoteip>[500] (92 bytes) 
    Oct 27 21:33:34 charon: 04[ENC] <con1000|1>generating INFORMATIONAL_V1 request 994932138 [ HASH N(DPD_ACK) ] 
    Oct 27 21:33:34 charon: 04[ENC] <con1000|1>parsed INFORMATIONAL_V1 request 1913070730 [ HASH N(DPD) ] 
    Oct 27 21:33:34 charon: 04[NET] <con1000|1>received packet: from <remoteip>[500] to <myip>[500] (92 bytes) 
    Oct 27 21:33:19 charon: 04[NET] <con1000|1>sending packet: from <myip>[500] to <remoteip>[500] (92 bytes) 
    Oct 27 21:33:19 charon: 04[ENC] <con1000|1>generating INFORMATIONAL_V1 request 3281888133 [ HASH N(DPD_ACK) ] 
    Oct 27 21:33:19 charon: 04[ENC] <con1000|1>parsed INFORMATIONAL_V1 request 2437441197 [ HASH N(DPD) ] 
    Oct 27 21:33:19 charon: 04[NET] <con1000|1>received packet: from <remoteip>[500] to <myip>[500] (92 bytes) 
    Oct 27 21:33:04 charon: 02[NET] <con1000|1>sending packet: from <myip>[500] to <remoteip>[500] (92 bytes) 
    Oct 27 21:33:04 charon: 02[ENC] <con1000|1>generating INFORMATIONAL_V1 request 2711865812 [ HASH N(DPD_ACK) ] 
    Oct 27 21:33:04 charon: 02[ENC] <con1000|1>parsed INFORMATIONAL_V1 request 1031711184 [ HASH N(DPD) ] 
    Oct 27 21:33:04 charon: 02[NET] <con1000|1>received packet: from <remoteip>[500] to <myip>[500] (92 bytes) 
    Oct 27 21:32:53 ipsec_starter[38365]:  
    Oct 27 21:32:53 ipsec_starter[38365]: 'con1000' routed 
    Oct 27 21:32:53 charon: 02[CFG] received stroke: route 'con1000' 
    Oct 27 21:32:53 charon: 04[CFG] added configuration 'con1000' 
    Oct 27 21:32:53 charon: 04[CFG] received stroke: add connection 'con1000' 
    Oct 27 21:32:53 ipsec_starter[38365]:</myip></remoteip></con1000|1></con1000|1></con1000|1></remoteip></myip></con1000|1></myip></remoteip></con1000|1></con1000|1></con1000|1></remoteip></myip></con1000|1></myip></remoteip></con1000|1></con1000|1></con1000|1></remoteip></myip></con1000|1></myip></remoteip></con1000|1></con1000|1></con1000|1></remoteip></myip></con1000|1></myip></remoteip></con1000|1></con1000|1></con1000|1></remoteip></myip></con1000|1></myip></remoteip></con1000|1></con1000|1></con1000|1></remoteip></myip></con1000|1></myip></remoteip></con1000|1></con1000|1></con1000|1></remoteip></myip></con1000|1></myip></remoteip></con1000|1></con1000|1></con1000|1></remoteip></myip></con1000|1></myip></remoteip></con1000|1></con1000|1></con1000|1></remoteip></myip></con1000|1></con1000|1></con1000|1></con1000|1></remoteip></myip></con1000|1></con1000|1></con1000|1></con1000|1></remoteip></myip></con1000|1></con1000|1></con1000|1></con1000|1></remoteip></myip></con1000|1> 
    

    Vielleicht hat jemand eine Idee woran das liegen kann.

    Danke vorab und beste Grüße

    Thomas

    Gelöst: Snort hat offensichtlich den Traffic geblockt.


Log in to reply