Hi Stefan, thanks for letting me know and writing me directly. Did i something wrong, that debian's bugzilla does not send me mail, when status of this bug changes or someone adds something to this bug?
> what do you mean with that? According to your bug report, you had a > problem with the renew of the SA after a specific time. How does your > workaround look like right now? Well, i removed dynamic changes of key and use static non-changing key for encryption (in other words, i do not run racoon, which changes key when needed, but the encryption keys are manualy entered in Cisco and linux configuration). > Could you please provide a few more informations about your cisco > concentrator and the ios version I don't use concentrator, but I use Cisco 876 ADSL router and "show version" says: Cisco IOS Software... C870-ADVENTERPRISEK9-M Version 12.4(6)T8, RELEASE SOFTWARE (fc3) ... flash:c870-adventerprisek9-mz.124-6.T8.bin > as well as the config which triggered the problem even if not frequently? As i wrote above, i had to change the config to stable solution (well not so secure :-/ as changing keys). I will have to look somewhere if i will be able to find old configs. Alternatively i could try to reconfigure the IPsec back to racoon and see if this still aplies to Debian Lenny (original report was for Etch). But the only chance is to do that for weekend and it might work correctly, because there is nearly any traffic. Let me know if it is worth for this extra work and time. Anyway thank you for your time and interest! Pavel -- To UNSUBSCRIBE, email to [email protected] with a subject of "unsubscribe". Trouble? Contact [email protected]
