Check point vpn tu11/6/2022 ![]() Vpn tu # reset all related IPsec connections to pfsense and the try to re-establish the connection Vpn debug trunc # rotates the ike.elg logfile The colleague on the Checkpoint site should enable the vpn debug like described in checkpoint sk14326 - in short: I am no IPsec expert but I know that there are often problems with default CheckPoint IPsec configuration when connection to 3rd party vendors. May 6 19:49:41 charon 14 vici client 14 disconnected May 6 19:49:41 charon 05 vici client 14 requests: list-sas May 6 19:49:41 charon 11 vici client 14 registered for: list-sa May 6 19:49:41 charon 11 vici client 14 connected May 6 19:49:36 charon 11 vici client 13 disconnected May 6 19:49:36 charon 11 vici client 13 requests: list-sas May 6 19:49:36 charon 11 vici client 13 registered for: list-sa May 6 19:49:36 charon 11 vici client 13 connected May 6 19:49:31 charon 12 vici client 12 disconnected May 6 19:49:31 charon 12 vici client 12 requests: list-sas May 6 19:49:31 charon 11 vici client 12 registered for: list-sa May 6 19:49:31 charon 03 vici client 12 connected May 6 19:48:41 charon 12 vici client 11 disconnected ![]() May 6 19:48:41 charon 03 vici client 11 requests: list-sas May 6 19:48:41 charon 12 vici client 11 registered for: list-sa May 6 19:48:41 charon 11 vici client 11 connected ![]() May 6 19:48:36 charon 11 vici client 10 disconnected May 6 19:48:36 charon 09 vici client 10 requests: list-sas May 6 19:48:36 charon 11 vici client 10 registered for: list-sa May 6 19:48:36 charon 09 vici client 10 connected May 6 19:48:30 charon 11 vici client 9 disconnected May 6 19:48:30 charon 11 vici client 9 requests: list-sas May 6 19:48:30 charon 16 vici client 9 registered for: list-sa May 6 19:48:30 charon 16 vici client 9 connected May 6 19:48:27 charon 16 checkin of IKE_SA successful May 6 19:48:27 charon 16 received retransmit of request with ID 2430477241, but no response to retransmit May 6 19:48:27 charon 16 received packet: from x.x.x.x to x.x.x.x (316 bytes) May 6 19:48:27 charon 16 IKE_SA con1000 successfully checked out May 6 19:48:27 charon 02 waiting for data on sockets ![]() May 6 19:48:27 charon 02 received packet: from x.x.x.x to x.x.x.x May 6 19:48:25 charon 16 vici client 8 disconnected May 6 19:48:25 charon 16 vici client 8 requests: list-sas May 6 19:48:25 charon 11 vici client 8 registered for: list-sa May 6 19:48:25 charon 07 vici client 8 connected May 6 19:48:23 charon 16 checkin of IKE_SA successful May 6 19:48:23 charon 16 received retransmit of request with ID 2430477241, but no response to retransmit May 6 19:48:23 charon 16 received packet: from x.x.x.x to x.x.x.x (316 bytes) We verified our settings match on both sides. The logs on the other side complain of no valid SA. The tunnel shows up and shows data from my end passing over to the other end ( Checkpoint ) but no data is coming back. ![]()
0 Comments
Leave a Reply.AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |