[AusNOG] Restarting IPSEC
yuri kishik
yk1982 at gmail.com
Wed Jul 11 08:49:41 EST 2012
Hello,
I was wondering if you’d be able to help me with this or point to the right
direction.
I am trying to run IPSEC tunnels over 3G internet, terminating in to the
Fortigate VDOM.
I’ve setup Netcomm NTC-6908 3G Router and keep the ipsec tunnel on at
night. In the morning I check the Fortigate firewall log and see regular,
predictable IPSEC dropouts. It works fine most of the time, then the tunnel
restarts 10 times, once every 30 minutes and then it works fine again.
I’ve tried Netcomm NTC-6908 and Cisco SRP 541W. Netcomm drops out every 30
minutes, Cisco dropouts every hour.
Here are the logs:
Netcomm:
1
06/07/12 16:08
notice
ipsec
phase2-up
IPsec phase 2 status change
2
06/07/12 16:08
notice
ipsec
phase2-down
IPsec phase 2 status change
3
06/07/12 15:38
notice
ipsec
phase2-up
IPsec phase 2 status change
4
06/07/12 15:38
notice
ipsec
phase2-down
IPsec phase 2 status change
5
06/07/12 15:08
notice
ipsec
phase2-up
IPsec phase 2 status change
6
06/07/12 15:08
notice
ipsec
phase2-down
IPsec phase 2 status change
7
06/07/12 14:38
notice
ipsec
phase2-up
IPsec phase 2 status change
8
06/07/12 14:38
notice
ipsec
phase2-down
IPsec phase 2 status change
9
06/07/12 14:08
notice
ipsec
phase2-up
IPsec phase 2 status change
10
06/07/12 14:07
notice
ipsec
phase2-down
IPsec phase 2 status change
11
06/07/12 13:37
notice
ipsec
phase2-up
IPsec phase 2 status change
12
06/07/12 13:37
notice
ipsec
phase2-down
IPsec phase 2 status change
13
06/07/12 13:07
notice
ipsec
phase2-up
IPsec phase 2 status change
14
06/07/12 13:07
notice
ipsec
phase2-down
IPsec phase 2 status change
15
06/07/12 12:37
notice
ipsec
phase2-up
IPsec phase 2 status change
16
06/07/12 12:37
notice
ipsec
phase2-down
IPsec phase 2 status change
17
06/07/12 12:07
notice
ipsec
phase2-up
IPsec phase 2 status change
18
06/07/12 12:07
notice
ipsec
phase2-down
IPsec phase 2 status change
19
06/07/12 11:37
notice
ipsec
phase2-up
IPsec phase 2 status change
20
06/07/12 11:37
notice
ipsec
phase2-down
IPsec phase 2 status change
21
06/07/12 11:07
notice
ipsec
phase2-up
IPsec phase 2 status change
22
06/07/12 11:06
notice
ipsec
phase2-down
IPsec phase 2 status change
23
06/07/12 10:36
notice
ipsec
phase2-up
IPsec phase 2 status change
24
06/07/12 10:36
notice
ipsec
phase2-down
IPsec phase 2 status change
25
06/07/12 10:06
notice
ipsec
phase2-up
IPsec phase 2 status change
26
06/07/12 10:06
notice
ipsec
phase2-down
IPsec phase 2 status change
27
06/07/12 09:36
notice
ipsec
phase2-down
IPsec phase 2 status change
28
06/07/12 09:36
notice
ipsec
phase2-up
IPsec phase 2 status change
29
06/07/12 09:36
notice
ipsec
phase2-down
IPsec phase 2 status change
30
06/07/12 09:31
notice
ipsec
phase2-up
IPsec phase 2 status change
31
06/07/12 09:28
notice
ipsec
phase2-down
IPsec phase 2 status change
32
06/07/12 09:28
notice
ipsec
phase2-down
IPsec phase 2 status change
33
06/07/12 09:15
notice
ipsec
phase2-down
IPsec phase 2 status change
34
06/07/12 09:15
notice
ipsec
phase2-up
IPsec phase 2 status change
35
06/07/12 09:15
notice
ipsec
phase2-down
IPsec phase 2 status change
36
06/07/12 09:11
notice
ipsec
phase2-down
IPsec phase 2 status change
37
06/07/12 09:11
notice
ipsec
phase2-up
IPsec phase 2 status change
38
06/07/12 09:11
notice
ipsec
phase2-down
IPsec phase 2 status change
39
06/07/12 09:04
notice
ipsec
phase2-up
IPsec phase 2 status change
40
06/07/12 09:00
notice
ipsec
phase2-down
IPsec phase 2 status change
41
06/07/12 09:00
notice
ipsec
phase2-down
IPsec phase 2 status change
42
06/07/12 08:58
notice
ipsec
phase2-up
IPsec phase 2 status change
Cisco Logs:
1
10/07/12 07:32
notice
ipsec
phase2-up
IPsec phase 2 status change
2
10/07/12 07:32
notice
ipsec
phase2-down
IPsec phase 2 status change
3
10/07/12 06:32
notice
ipsec
phase2-up
IPsec phase 2 status change
4
10/07/12 06:32
notice
ipsec
phase2-down
IPsec phase 2 status change
5
10/07/12 05:32
notice
ipsec
phase2-up
IPsec phase 2 status change
6
10/07/12 05:32
notice
ipsec
phase2-down
IPsec phase 2 status change
7
10/07/12 01:33
notice
ipsec
phase2-up
IPsec phase 2 status change
8
10/07/12 01:33
notice
ipsec
phase2-down
IPsec phase 2 status change
9
09/07/12 22:33
notice
ipsec
phase2-up
IPsec phase 2 status change
10
09/07/12 22:33
notice
ipsec
phase2-down
IPsec phase 2 status change
11
09/07/12 18:04
notice
ipsec
phase2-up
IPsec phase 2 status change
12
09/07/12 18:04
notice
ipsec
phase2-down
IPsec phase 2 status change
13
09/07/12 18:04
notice
ipsec
phase2-down
IPsec phase 2 status change
14
09/07/12 17:04
notice
ipsec
phase2-up
IPsec phase 2 status change
15
09/07/12 17:04
notice
ipsec
phase2-down
IPsec phase 2 status change
16
09/07/12 16:04
notice
ipsec
phase2-up
IPsec phase 2 status change
17
09/07/12 16:04
notice
ipsec
phase2-down
IPsec phase 2 status change
18
09/07/12 14:04
notice
ipsec
phase2-up
IPsec phase 2 status change
19
09/07/12 12:55
notice
ipsec
phase2-down
IPsec phase 2 status change
20
09/07/12 12:25
notice
ipsec
phase2-down
IPsec phase 2 status change
21
09/07/12 12:25
notice
ipsec
phase2-up
IPsec phase 2 status change
22
09/07/12 12:25
notice
ipsec
phase2-down
IPsec phase 2 status change
23
09/07/12 11:59
notice
ipsec
phase2-down
IPsec phase 2 status change
24
09/07/12 11:59
notice
ipsec
phase2-up
IPsec phase 2 status change
25
09/07/12 11:59
notice
ipsec
phase2-down
IPsec phase 2 status change
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.ausnog.net/pipermail/ausnog/attachments/20120711/58438f7a/attachment.html>
More information about the AusNOG
mailing list