[ previous ] [ next ] [ threads ]
 From:  Manuel Kasper <mk at neon1 dot net>
 To:  Goetz Goerisch <ggoerisch at gmx dot net>
 Cc:  m0n0wall at lists dot m0n0 dot ch
 Subject:  Re: [m0n0wall] Lockups since upgrade to 1.2b3
 Date:  Sun, 19 Dec 2004 22:59:33 +0100
On 19.12.2004 12:53 +0100, Goetz Goerisch wrote:

> If  a node inside the LAN connectes via an IPSec tunnel to
> m0n0wall's  LAN interface and the tunnel is terminated, m0n0wall
> doesn't cleans out all SAD/SPD's. Therefore the node could not
> reach (ping) the m0n0wall and it seams as  it is locked. Because if
> another node connects to the m0n0wall and cleans out the left
> SAD/SPD entries the node which connected via an IPSec tunnel could
> then again reach the  m0n0wall.
> I hope this is understandable?

Yeah - and it's another racoon problem that will hopefully be fixed

- Manuel