i have a Problem with a connection between two ASG 8.160.
ASG -> IPSEC Tunnel -> ASG
here is the connectionlog:
2011:03:07-09:51:01 firewall pluto[7885]: "S_alex_uni_incoming"[6] 93.104.2xx.197:4500 #1112: responding to Main Mode from unknown peer 93.104.2x.197:4500
2011:03:07-09:51:01 firewall pluto[7885]: | NAT-T: new mapping 93.104.2xx.197:4500/500)
2011:03:07-09:51:01 firewall pluto[7885]: "S_alex_uni_incoming"[6] 93.104.2xx.197 #1112: NAT-Traversal: Result using RFC 3947: both are NATed
2011:03:07-09:51:01 firewall pluto[7885]: "S_alex_uni_incoming"[6] 93.104.2xx.197 #1112: Peer ID is ID_FQDN: 'firewall.ducktales.net'
2011:03:07-09:51:01 firewall pluto[7885]: "S_ducktales_incoming"[1] 93.104.2xx.197 #1112: we don't have a cert
2011:03:07-09:51:02 firewall pluto[7885]: | NAT-T: new mapping 93.104.2xx.197:500/4500)
2011:03:07-09:51:02 firewall pluto[7885]: "S_ducktales_incoming"[1] 93.104.2xx.197:4500 #1112: sent MR3, ISAKMP SA established
2011:03:07-09:51:02 firewall pluto[7885]: "S_ducktales_incoming"[1] 93.104.2xx.197:4500 #1113: responding to Quick Mode
2011:03:07-09:51:02 firewall pluto[7885]: "S_ducktales_incoming"[1] 93.104.2xx.197:4500 #1114: responding to Quick Mode
2011:03:07-09:51:02 firewall pluto[7885]: "S_ducktales_incoming"[1] 93.104.2xx.197:4500 #1113: Dead Peer Detection (RFC 3706) enabled
2011:03:07-09:51:02 firewall pluto[7885]: "S_ducktales_incoming"[1] 93.104.2xx.197:4500 #1113: IPsec SA established {ESP=>0x434690ac 0x0000952a 0x673691ab 0x000048c6
interessting ist, that it first means it commes from "alex_uni" then kills that instance comming from the same ip as the right connection called "ducktales_incoming"
i have a ping running, first the ping goes right, after the deletion of the "alex_uni" connection only every second ping works correct ...
Any ideas?
Robert
