Page 1 of 1
L2TP --> Dying!
Posted: Wed Aug 28, 2019 3:43 pm
by cyon
Hello.
I'm really struggling with this. I connect with no problem and then after some time, it starts to "dying" out and disconnect.
What can I do to keep the connection going? or did I miss something?
13:09:12 ipsec,info ISAKMP-SA dying 10x.xx.xx.xx[4500]-100.xx.xx.xx[4219
3b7:xxxxxxxxxc5ff0c
13:21:12 ipsec,info ISAKMP-SA deleted 10x.xx.xx.xx[4500]-100.xx.xx.xx[42
743b7:xxxxxxxxxc5ff0c rekey:1
Thank you for the help!
Re: L2TP --> Dying!
Posted: Wed Aug 28, 2019 4:04 pm
by emils
Isn't there anything between the dying and deleted messages? If that is an L2TP client, then it should initiate a new ISAKMP-SA when the old one is dying. If it is L2TP server then it should receive a new ISAKMP-SA request from the client. Do you actually experience any issues with the tunnel not working after these messages or are just wondering about them?
Re: L2TP --> Dying!
Posted: Wed Aug 28, 2019 5:48 pm
by cyon
I don't understand why! Here is the log
14:48:01 ipsec,info purging ISAKMP-SA 1xx.xx.xx.xx[4500]<=>1xx.xx.xx.xx[11659] spi=59bd8xxc0a02160c:2181ecxxxx57.
14:48:01 ipsec,info ISAKMP-SA deleted 10x.xx.xx.xx[4500]-1xx.xx.xx.xx[11659] spi:59bd8xxc0a02160c:2181ec3xxxxc57 r
ekey:1
15:34:03 ipsec,info ISAKMP-SA dying 10x.xx.xx.xx[500]-41.xx.xx.xxx[500] spi:26273c7cb26a2c4b:dxxxxx73c0253
15:46:03 ipsec,info ISAKMP-SA deleted 10x.xx.xx.xx[500]-41.xx.xx.xx[500] spi:26273c7cb26a2c4b:dxxxxx73c0253 rekey:1
15:46:28 l2tp,ppp,info <l2tp-skynet>: terminating... - hungup
15:46:28 l2tp,ppp,info,account skynet logged out, 3624 497254 xxxxxxxxx
15:46:28 l2tp,ppp,info <l2tp-skynet>: disconnected
16:49:57 ipsec,info respond new phase 1 (Identity Protection): 1xx.xx.xx.xx[500]<=>xx.xx.xxx.xx[500]
16:49:58 ipsec,info ISAKMP-SA established 1xx.xx.xx.xx[500]-4xx.xx.xx.xx[500] spi:eaxxxxxxx4:0aa11562e395c5fe
16:49:59 l2tp,info first L2TP UDP packet received from 4xx.xx.xx.xx
16:49:59 interface,info <l2tp-skynet> detect UNKNOWN
16:49:59 l2tp,ppp,info,account skynet logged in, 10.xx.xx.12
16:49:59 l2tp,ppp,info <l2tp-skynet>: authenticated
16:49:59 l2tp,ppp,info <l2tp-skynet>: connected
16:50:05 interface,info <l2tp-skynet> detect WAN
Re: L2TP --> Dying!
Posted: Thu Aug 29, 2019 9:34 am
by cyon
Just an update, so I change the DNS server to a different server and the connection never drop one's un till now 8 am this morning. I could see it gets a new key every hour.
I'm getting new internet installed soon. maybe the line speed is just too small.
Re: L2TP --> Dying!
Posted: Thu Oct 03, 2019 11:35 am
by Sosok9858
Hi everyone. I can not find topic which i needed. If i wrote post in wrong place - please tell me rigth way.
I use l2tp+IPsec over usual internet connection. Sometimes i have reconnect by provider fall or something else.
I have ospf peering over my tunnel.
Through my tunnel i can connect to routers by winbox - my tunnel is member of LAN interface list.
So, after link flapping (up/down) in LAN list member changed from <l2tp-client> to *F0005 for example. Same situation with interfaces list in OSPF.
And after this event i last my peering. Without ospf and routing by static i lost my connect by winbox.
I manually fix my lists and members of ones and network state is fine.
What can be wrong?
Thanks