dslreports logo
site
 
    All Forums Hot Topics Gallery
spc

spacer




how-to block ads


Search Topic:
uniqs
835
share rss forum feed


EGeezer
zichrona livracha
Premium
join:2002-08-04
Midwest
kudos:8
Reviews:
·Callcentric

VPN tunnel question

I am trying to test a VPN tunnel between two FVS318s -no comments on the choice please ;-} at Firmware 1.1 using two DHCP connections . It would seem that as long as the target router's IP address does not release and change, I should be able to successfully establish the tunnel from another DHCP client router.

Question I have, is this assumption valid or is there a reason the tunnel cannot be established with a DHCP assigned WAN address?? I have reset the exchange key and IPSec IDs in case I was using an expired key.

Here's the target router (FALDO) log.

Sun, 01/01/1900 00:00:00 - FALDO IPsec:Interface-UP(1):65.24.xx.yy
Sun, 01/01/1900 00:00:00 - FALDO IPsec:Quick Mode message is for a non-existent (expired?) ISAKMP SA
Tues, 09/24/2002 20:15:47 - FALDO IPsec:Quick Mode message is for a non-existent (expired?) ISAKMP SA
Tues, 09/24/2002 20:15:53 - FALDO IPsec:Quick Mode message is for a non-existent (expired?) ISAKMP SA
Tues, 09/24/2002 20:16:03 - FALDO IPsec:Quick Mode message is for a non-existent (expired?) ISAKMP SA
Tues, 09/24/2002 20:16:09 - FALDO IPsec:Quick Mode message is for a non-existent (expired?) ISAKMP SA
Tues, 09/24/2002 20:16:18 - FALDO IPsec:Quick Mode message is for a non-existent (expired?) ISAKMP SA
Tues, 09/24/2002 20:16:20 - FALDO IPsec:Quick Mode message is for a non-existent (expired?) ISAKMP SA
Tues, 09/24/2002 20:16:28 - FALDO IPsec:Quick Mode message is for a non-existent (expired?) ISAKMP SA
Tues, 09/24/2002 20:16:42 - FALDO IPsec:Quick Mode message is for a non-existent (expired?) ISAKMP SA
Tues, 09/24/2002 20:16:46 - FALDO IPsec:Quick Mode message is for a non-existent (expired?) ISAKMP SA

End of Log ----------

Here's the initiating router (BOHN1) log.

Sun, 01/01/1900 00:00:00 - BOHN1 IPsec:Interface-UP(1):65.24.aaa.bb
Tues, 09/24/2002 20:14:50 - BOHN1 IPsec:New State index:0, sno:1
Tues, 09/24/2002 20:14:50 - BOHN1 IPsec:Initiating Aggressive Mode
Tues, 09/24/2002 20:14:50 - BOHN1 IPsec:agg_outI1() policy=65
Tues, 09/24/2002 20:14:50 - BOHN1 IKE: [PAB>TMM] Initializing IKE Aggressive Mode
Tues, 09/24/2002 20:14:50 - BOHN1 IKE: [PAB>TMM] TX >> AM_I1 : 65.24.29.77
Tues, 09/24/2002 20:14:50 - BOHN1 IPsec:Call SendUDP: len=244
Tues, 09/24/2002 20:14:50 - BOHN1 IPsec:Packet retransmission, timeout in 10 seconds for #1
Tues, 09/24/2002 20:14:54 - BOHN1 IPsec:main_inR1_outI2()
Tues, 09/24/2002 20:14:54 - BOHN1 IKE: [PAB>TMM] RX st_connection->that.id.name.len=5
Tues, 09/24/2002 20:14:54 - BOHN1 IPsec:Call SendUDP: len=52
Tues, 09/24/2002 20:14:54 - BOHN1 IKE: [PAB>TMM] TX >> AM_I2 : 65.24.29.77
Tues, 09/24/2002 20:14:54 - BOHN1 IPsec:Packet retransmission, timeout in 28740 seconds for #1
Tues, 09/24/2002 20:14:54 - BOHN1 IPsec:ê: sent AGG_I2, ISAKMP SA established
Tues, 09/24/2002 20:14:54 - BOHN1 IPsec:New State index:1, sno:2
Tues, 09/24/2002 20:14:54 - BOHN1 IPsec:New Message ID generated:900001
Tues, 09/24/2002 20:14:54 - BOHN1 IPsec:initiating Quick Mode PSK+ENCRYPT+TUNNEL+PFS
Tues, 09/24/2002 20:14:54 - BOHN1 IKE: [PAB>TMM] TX >> QM_I1 : 65.24.29.77
Tues, 09/24/2002 20:14:54 - BOHN1 IPsec:My generated SPI=1ffd5e78
Tues, 09/24/2002 20:14:54 - BOHN1 IPsec:Call SendUDP: len=308
Tues, 09/24/2002 20:14:54 - BOHN1 IPsec:Packet retransmission, timeout in 10 seconds for #2
Tues, 09/24/2002 20:15:02 - BOHN1 IPsec:Call SendUDP: len=308
Tues, 09/24/2002 20:15:02 - BOHN1 IPsec:Packet retransmission, timeout in 20 seconds for #2
Tues, 09/24/2002 20:15:16 - BOHN1 IPsec:New State index:2, sno:3
Tues, 09/24/2002 20:15:16 - BOHN1 IPsec:New Message ID generated:900002
Tues, 09/24/2002 20:15:16 - BOHN1 IPsec:initiating Quick Mode PSK+ENCRYPT+TUNNEL+PFS
Tues, 09/24/2002 20:15:16 - BOHN1 IKE: [PAB>TMM] TX >> QM_I1 : 65.24.29.77
Tues, 09/24/2002 20:15:16 - BOHN1 IPsec:My generated SPI=1ffd5e79
Tues, 09/24/2002 20:15:16 - BOHN1 IPsec:Call SendUDP: len=308
Tues, 09/24/2002 20:15:16 - BOHN1 IPsec:Packet retransmission, timeout in 10 seconds for #3
Tues, 09/24/2002 20:15:18 - BOHN1 IPsec:Call SendUDP: len=308
Tues, 09/24/2002 20:15:18 - BOHN1 IPsec:Packet retransmission, timeout in 40 seconds for #2
Tues, 09/24/2002 20:15:24 - BOHN1 IPsec:Call SendUDP: len=308
Tues, 09/24/2002 20:15:24 - BOHN1 IPsec:Packet retransmission, timeout in 20 seconds for #3
Tues, 09/24/2002 20:15:38 - BOHN1 IPsec:Call SendUDP: len=308
Tues, 09/24/2002 20:15:38 - BOHN1 IPsec:Packet retransmission, timeout in 40 seconds for #3
Tues, 09/24/2002 20:15:40 - BOHN1 IPsec:New State index:3, sno:4
Tues, 09/24/2002 20:15:40 - BOHN1 IPsec:New Message ID generated:900003
Tues, 09/24/2002 20:15:40 - BOHN1 IPsec:initiating Quick Mode PSK+ENCRYPT+TUNNEL+PFS
Tues, 09/24/2002 20:15:40 - BOHN1 IKE: [PAB>TMM] TX >> QM_I1 : 65.24.29.77
Tues, 09/24/2002 20:15:40 - BOHN1 IPsec:My generated SPI=1ffd5e7a
Tues, 09/24/2002 20:15:40 - BOHN1 IPsec:Call SendUDP: len=308
Tues, 09/24/2002 20:15:40 - BOHN1 IPsec:Packet retransmission, timeout in 10 seconds for #4
Tues, 09/24/2002 20:15:48 - BOHN1 IPsec:Call SendUDP: len=308
Tues, 09/24/2002 20:15:48 - BOHN1 IPsec:Packet retransmission, timeout in 20 seconds for #4
Tues, 09/24/2002 20:15:52 - BOHN1 IPsec:max number of retransmissions (2) reached STATE_QUICK_I1
Tues, 09/24/2002 20:15:52 - BOHN1 IPsec:New State index:4, sno:5
Tues, 09/24/2002 20:15:52 - BOHN1 IPsec:New Message ID generated:900004
Tues, 09/24/2002 20:15:52 - BOHN1 IPsec:initiating Quick Mode PSK+ENCRYPT+TUNNEL+PFS
Tues, 09/24/2002 20:15:52 - BOHN1 IKE: [PAB>TMM] TX >> QM_I1 : 65.24.29.77
Tues, 09/24/2002 20:15:52 - BOHN1 IPsec:My generated SPI=1ffd5e7b
Tues, 09/24/2002 20:15:52 - BOHN1 IPsec:Call SendUDP: len=308
Tues, 09/24/2002 20:15:52 - BOHN1 IPsec:Packet retransmission, timeout in 10 seconds for #5
Tues, 09/24/2002 20:16:02 - BOHN1 IPsec:Call SendUDP: len=308
Tues, 09/24/2002 20:16:02 - BOHN1 IPsec:Packet retransmission, timeout in 20 seconds for #5
Tues, 09/24/2002 20:16:04 - BOHN1 IPsec:Call SendUDP: len=308
Tues, 09/24/2002 20:16:04 - BOHN1 IPsec:Packet retransmission, timeout in 40 seconds for #4
Tues, 09/24/2002 20:16:14 - BOHN1 IPsec:max number of retransmissions (2) reached STATE_QUICK_I1
Tues, 09/24/2002 20:16:18 - BOHN1 IPsec:Call SendUDP: len=308
Tues, 09/24/2002 20:16:18 - BOHN1 IPsec:Packet retransmission, timeout in 40 seconds for #5
Tues, 09/24/2002 20:16:20 - BOHN1 IPsec:New State index:1, sno:6
Tues, 09/24/2002 20:16:20 - BOHN1 IPsec:New Message ID generated:900005
Tues, 09/24/2002 20:16:20 - BOHN1 IPsec:initiating Quick Mode PSK+ENCRYPT+TUNNEL+PFS
Tues, 09/24/2002 20:16:20 - BOHN1 IKE: [PAB>TMM] TX >> QM_I1 : 65.24.29.77
Tues, 09/24/2002 20:16:20 - BOHN1 IPsec:My generated SPI=1ffd5e7c
Tues, 09/24/2002 20:16:20 - BOHN1 IPsec:Call SendUDP: len=308
Tues, 09/24/2002 20:16:20 - BOHN1 IPsec:Packet retransmission, timeout in 10 seconds for #6
Tues, 09/24/2002 20:16:28 - BOHN1 IPsec:Call SendUDP: len=308
Tues, 09/24/2002 20:16:28 - BOHN1 IPsec:Packet retransmission, timeout in 20 seconds for #6
Tues, 09/24/2002 20:16:39 - BOHN1 IPsec:max number of retransmissions (2) reached STATE_QUICK_I1
Tues, 09/24/2002 20:16:43 - BOHN1 IPsec:Call SendUDP: len=308
Tues, 09/24/2002 20:16:43 - BOHN1 IPsec:Packet retransmission, timeout in 40 seconds for #6
Tues, 09/24/2002 20:16:45 - BOHN1 IPsec:New State index:2, sno:7
Tues, 09/24/2002 20:16:45 - BOHN1 IPsec:New Message ID generated:900006
Tues, 09/24/2002 20:16:45 - BOHN1 IPsec:initiating Quick Mode PSK+ENCRYPT+TUNNEL+PFS
Tues, 09/24/2002 20:16:45 - BOHN1 IKE: [PAB>TMM] TX >> QM_I1 : 65.24.29.77
Tues, 09/24/2002 20:16:45 - BOHN1 IPsec:My generated SPI=1ffd5e7d
Tues, 09/24/2002 20:16:45 - BOHN1 IPsec:Call SendUDP: len=308
Tues, 09/24/2002 20:16:45 - BOHN1 IPsec:Packet retransmission, timeout in 10 seconds for #7
Tues, 09/24/2002 20:16:53 - BOHN1 IPsec:Call SendUDP: len=308
Tues, 09/24/2002 20:16:53 - BOHN1 IPsec:Packet retransmission, timeout in 20 seconds for #7
Tues, 09/24/2002 20:16:55 - BOHN1 IPsec:max number of retransmissions (2) reached STATE_QUICK_I1
Tues, 09/24/2002 20:17:09 - BOHN1 IPsec:Call SendUDP: len=308
Tues, 09/24/2002 20:17:09 - BOHN1 IPsec:Packet retransmission, timeout in 40 seconds for #7
Tues, 09/24/2002 20:17:11 - BOHN1 IPsec:New State index:3, sno:8
Tues, 09/24/2002 20:17:11 - BOHN1 IPsec:New Message ID generated:900007
Tues, 09/24/2002 20:17:11 - BOHN1 IPsec:initiating Quick Mode PSK+ENCRYPT+TUNNEL+PFS
Tues, 09/24/2002 20:17:11 - BOHN1 IKE: [PAB>TMM] TX >> QM_I1 : 65.24.29.77
Tues, 09/24/2002 20:17:11 - BOHN1 IPsec:My generated SPI=1ffd5e7e
Tues, 09/24/2002 20:17:11 - BOHN1 IPsec:Call SendUDP: len=308
Tues, 09/24/2002 20:17:11 - BOHN1 IPsec:Packet retransmission, timeout in 10 seconds for #8
Tues, 09/24/2002 20:17:19 - BOHN1 IPsec:Call SendUDP: len=308
Tues, 09/24/2002 20:17:19 - BOHN1 IPsec:Packet retransmission, timeout in 20 seconds for #8
Tues, 09/24/2002 20:17:21 - BOHN1 IPsec:max number of retransmissions (2) reached STATE_QUICK_I1
Tues, 09/24/2002 20:17:34 - BOHN1 IPsec:Call SendUDP: len=308
Tues, 09/24/2002 20:17:34 - BOHN1 IPsec:Packet retransmission, timeout in 40 seconds for #8
Tues, 09/24/2002 20:17:36 - BOHN1 IPsec:New State index:1, sno:9
Tues, 09/24/2002 20:17:36 - BOHN1 IPsec:New Message ID generated:900008
Tues, 09/24/2002 20:17:36 - BOHN1 IPsec:initiating Quick Mode PSK+ENCRYPT+TUNNEL+PFS
Tues, 09/24/2002 20:17:36 - BOHN1 IKE: [PAB>TMM] TX >> QM_I1 : 65.24.29.77
Tues, 09/24/2002 20:17:36 - BOHN1 IPsec:My generated SPI=1ffd5e7f
Tues, 09/24/2002 20:17:36 - BOHN1 IPsec:Call SendUDP: len=308
Tues, 09/24/2002 20:17:36 - BOHN1 IPsec:Packet retransmission, timeout in 10 seconds for #9
Tues, 09/24/2002 20:17:44 - BOHN1 IPsec:Call SendUDP: len=308
Tues, 09/24/2002 20:17:44 - BOHN1 IPsec:Packet retransmission, timeout in 20 seconds for #9
Tues, 09/24/2002 20:17:46 - BOHN1 IPsec:max number of retransmissions (2) reached STATE_QUICK_I1
Tues, 09/24/2002 20:17:59 - BOHN1 IPsec:Call SendUDP: len=308
Tues, 09/24/2002 20:17:59 - BOHN1 IPsec:Packet retransmission, timeout in 40 seconds for #9
Tues, 09/24/2002 20:18:01 - BOHN1 IPsec:New State index:2, sno:10
Tues, 09/24/2002 20:18:01 - BOHN1 IPsec:New Message ID generated:900009
Tues, 09/24/2002 20:18:01 - BOHN1 IPsec:initiating Quick Mode PSK+ENCRYPT+TUNNEL+PFS
Tues, 09/24/2002 20:18:01 - BOHN1 IKE: [PAB>TMM] TX >> QM_I1 : 65.24.29.77
Tues, 09/24/2002 20:18:01 - BOHN1 IPsec:My generated SPI=1ffd5e80
Tues, 09/24/2002 20:18:01 - BOHN1 IPsec:Call SendUDP: len=308
Tues, 09/24/2002 20:18:01 - BOHN1 IPsec:Packet retransmission, timeout in 10 seconds for #10
Tues, 09/24/2002 20:18:09 - BOHN1 IPsec:Call SendUDP: len=308
Tues, 09/24/2002 20:18:09 - BOHN1 IPsec:Packet retransmission, timeout in 20 seconds for #10
Tues, 09/24/2002 20:18:11 - BOHN1 IPsec:max number of retransmissions (2) reached STATE_QUICK_I1

End of Log ----------
--
I hate jogging. It makes my beer foam up...


EGeezer
zichrona livracha
Premium
join:2002-08-04
Midwest
kudos:8
Never mind, found it!