Hi,
I have VPNC set up and connected between my home and work. The connection works for about an hour and then VPNC appears to hang and has to be restarted. I setup the same connection on an EC2 micro instance with the same OS (Ubuntu 12.10) but the problem doesn't occur on this. At home VPNC is installed on a 6 core Xeon server. I was therefore thinking it could be a race condition but I'm only guessing.
Here's a log from the server that shows the hang: http://pastebin.com/2v49FLxw. Notice that the 'lifetime status' messages stop at 3819 and then one more is output before the shutdown is processed. The 'Interrupted system call' appears earlier but I think this is just because the log output is buffered. Also the 'lifetime status' messages appear to slow down before the hang.
And here's a log from the micro EC2 instance at around the same hour mark without a hang: http://pastebin.com/QHTnrswd. The 'lifetime status' messages never slow down and new lifetime parameters are processed which I assume is what should happen in the other environment as well.
Both VPNC's report their versions the same:
ubuntu@ip-10-0-1-214:~$ vpnc --version
vpnc version 0.5.3r512
Copyright (C) 2002-2006 Geoffrey Keating, Maurice Massar, others
vpnc comes with NO WARRANTY, to the extent permitted by law.
You may redistribute copies of vpnc under the terms of the GNU General
Public License. For more information about these matters, see the files
named COPYING.
Built with certificate support.
Supported DH-Groups: nopfs dh1 dh2 dh5
Supported Hash-Methods: md5 sha1
Supported Encryptions: null des 3des aes128 aes192 aes256
Supported Auth-Methods: psk psk+xauth hybrid(rsa)
And the configuration is the same for both:
IPSec gateway XXX.XXX.XXX.XXX
IPSec ID XXXX
IPSec secret XXXX
Xauth username XXXX\XXXX
Xauth password XXXX
DPD idle timeout (our side) 0
Debug 2
No Detach
Script /etc/vpnc/custom-script
The custom script sets up routes before calling /etc/vpnc/vpnc-script and is again the same on both. I can post this if required.
Does anyone have any ideas? Is there any further information I can provide to help with this or is there anything I can try to diagnose it?
Cheers,
Dave.
_______________________________________________
vpnc-devel mailing list
vpnc-devel@unix-ag.uni-kl.de
https://lists.unix-ag.uni-kl.de/mailman/listinfo/vpnc-devel
http://www.unix-ag.uni-kl.de/~massar/vpnc/
I have VPNC set up and connected between my home and work. The connection works for about an hour and then VPNC appears to hang and has to be restarted. I setup the same connection on an EC2 micro instance with the same OS (Ubuntu 12.10) but the problem doesn't occur on this. At home VPNC is installed on a 6 core Xeon server. I was therefore thinking it could be a race condition but I'm only guessing.
Here's a log from the server that shows the hang: http://pastebin.com/2v49FLxw. Notice that the 'lifetime status' messages stop at 3819 and then one more is output before the shutdown is processed. The 'Interrupted system call' appears earlier but I think this is just because the log output is buffered. Also the 'lifetime status' messages appear to slow down before the hang.
And here's a log from the micro EC2 instance at around the same hour mark without a hang: http://pastebin.com/QHTnrswd. The 'lifetime status' messages never slow down and new lifetime parameters are processed which I assume is what should happen in the other environment as well.
Both VPNC's report their versions the same:
ubuntu@ip-10-0-1-214:~$ vpnc --version
vpnc version 0.5.3r512
Copyright (C) 2002-2006 Geoffrey Keating, Maurice Massar, others
vpnc comes with NO WARRANTY, to the extent permitted by law.
You may redistribute copies of vpnc under the terms of the GNU General
Public License. For more information about these matters, see the files
named COPYING.
Built with certificate support.
Supported DH-Groups: nopfs dh1 dh2 dh5
Supported Hash-Methods: md5 sha1
Supported Encryptions: null des 3des aes128 aes192 aes256
Supported Auth-Methods: psk psk+xauth hybrid(rsa)
And the configuration is the same for both:
IPSec gateway XXX.XXX.XXX.XXX
IPSec ID XXXX
IPSec secret XXXX
Xauth username XXXX\XXXX
Xauth password XXXX
DPD idle timeout (our side) 0
Debug 2
No Detach
Script /etc/vpnc/custom-script
The custom script sets up routes before calling /etc/vpnc/vpnc-script and is again the same on both. I can post this if required.
Does anyone have any ideas? Is there any further information I can provide to help with this or is there anything I can try to diagnose it?
Cheers,
Dave.
_______________________________________________
vpnc-devel mailing list
vpnc-devel@unix-ag.uni-kl.de
https://lists.unix-ag.uni-kl.de/mailman/listinfo/vpnc-devel
http://www.unix-ag.uni-kl.de/~massar/vpnc/