Hi,
for some reason, this seems to have been for a while now; isakmpd will
simply quit running after initiating: ipsecctl -f /etc/ipsec.conf
Starting isakmpd manually with flags -Kdv doesn't give any indication as
to what might be causing the service to crash or segfault and nothing is
reported in the logs - I checked both daemon and messages.
ipsec.conf consists of standard config:
ike passive esp transport \
proto udp from 212.159.80.17 to any port 1701 \
main auth "hmac-sha" enc "aes" group modp1024 \
quick auth "hmac-sha" enc "aes" \
psk "Sclr11XP99"
ike passive esp transport \
proto udp from <IP> to any port 1701 \
main auth "hmac-sha" enc "aes" group modp1024 \
quick auth "hmac-sha" enc "aes" \
psk "<Some_crazy_pass>"
Basically the setup used to work fine a few upgrades ago while I was on
5.5 but then something seems to have changed and it stopped.
Along with the above I'm running npppd for ipsec/l2tp so I can run the
native Android VPN client. I do run OpenVPN in addition but their seems
to be some issue with routing on some apps so to get round that the
choice is either: add default route manually when using OpenVPN / or use
native client.
I managed to find this thread from the list:
http://comments.gmane.org/gmane.os.openbsd.misc/209636
and managed to pretty much validate my config in comparison but for some
reason I cannot work this one out.
System is up to date as per last night and build is:
5.6 GENERIC.MP#633 amd64
5.6 GENERIC.MP#633 amd64
Would anyone be able to suggest anything?
Thanks.
Kaya
