OK, I am somewhat stumped! Have two m0n0wall boxes setup in a site to site
vpn link and this has been working for over a year (maybe two?) without any
problems. A few days ago traffic between the two sites stopped, so I gave
one of the boxes a reboot as I didn¹t have time to see why the link had
dropped.

Since then the session will not establish and I have no idea why. There has
been no config changes at either end, boxes are as they have been. Other
than that everything is working fine, all other traffic is flowing, nat,
port forwarding, etc... Is all good. Does anyone have any ideas:

From one of the boxes:

Sep 23 14:30:28    /kernel: WARNING: pseudo-random number generator used for
IPsec processing
Sep 23 14:30:28    racoon: INFO: initiate new phase 2 negotiation:
217.35.xxx.xxx[0]<=>82.16.xxx.xxx[0]
Sep 23 14:29:35    racoon: ERROR: failed to pre-process packet.
Sep 23 14:29:35    racoon: ERROR: failed to get sainfo.
Sep 23 14:29:35    racoon: ERROR: failed to get sainfo.
Sep 23 14:29:35    racoon: INFO: respond new phase 2 negotiation:
217.35.xxx.xxx[0]<=>82.16.xxx.xxx[0]
Sep 23 14:29:25    racoon: ERROR: failed to pre-process packet.
Sep 23 14:29:25    racoon: ERROR: failed to get sainfo.
Sep 23 14:29:25    racoon: ERROR: failed to get sainfo.
Sep 23 14:29:24    racoon: INFO: respond new phase 2 negotiation:
217.35.92.xxx[0]<=>82.16.xxx.xxx[0]
Sep 23 14:29:14    racoon: ERROR: failed to pre-process packet.
Sep 23 14:29:14    racoon: ERROR: failed to get sainfo.
Sep 23 14:29:14    racoon: ERROR: failed to get sainfo.
Sep 23 14:29:14    racoon: INFO: respond new phase 2 negotiation:
217.35.xxx.xxx[0]<=>82.16.xxx.xxx[0]
Sep 23 14:27:58    racoon: ERROR: failed to pre-process packet.
Sep 23 14:27:58    racoon: ERROR: failed to get sainfo.
Sep 23 14:27:58    racoon: ERROR: failed to get sainfo.
Sep 23 14:27:57    racoon: INFO: respond new phase 2 negotiation:
217.35.xxx.xxx[0]<=>82.16.xxx.xxx[0]
Sep 23 14:27:51    dnsmasq[100]: using nameserver 194.72.9.38#53
Sep 23 14:27:51    dnsmasq[100]: using nameserver 194.74.65.68#53
Sep 23 14:27:51    dnsmasq[100]: reading /etc/resolv.conf
Sep 23 14:27:47    racoon: ERROR: failed to pre-process packet.
Sep 23 14:27:47    racoon: ERROR: failed to get sainfo.
Sep 23 14:27:47    racoon: ERROR: failed to get sainfo.
Sep 23 14:27:47    racoon: INFO: respond new phase 2 negotiation:
217.35.xxx.xxx[0]<=>82.16.xxx.xxx[0]
Sep 23 14:27:37    racoon: ERROR: failed to pre-process packet.
Sep 23 14:27:37    racoon: ERROR: failed to get sainfo.
Sep 23 14:27:37    racoon: ERROR: failed to get sainfo.
Sep 23 14:27:37    racoon: INFO: respond new phase 2 negotiation:
217.35.xxx.xxx[0]<=>82.16.xxx.xxx[0]
Sep 23 14:27:36    racoon: INFO: ISAKMP-SA established
217.35.xxx.xxx[500]-82.16.xxx.xxx[500] spi:ef90f0ab089c46d0:2b0c78ee76f0dee2
Sep 23 14:27:36    racoon: NOTIFY: couldn't find the proper pskey, try to
get one by the peer's address.
Sep 23 14:27:35    racoon: WARNING: No ID match.
Sep 23 14:27:35    racoon: INFO: received Vendor ID: DPD
Sep 23 14:27:35    racoon: INFO: begin Aggressive mode.
Sep 23 14:27:35    racoon: INFO: respond new phase 1 negotiation:
217.35.xxx.xxx[500]<=>82.16.xxx.xxx[500]
Sep 23 14:27:26    dhclient: bound to 217.35.xxx.xxx -- renewal in 64894
seconds.
Sep 23 14:27:25    racoon: INFO: 217.35.xxx.xxx[500] used as isakmp port
(fd=9)
Sep 23 14:27:25    racoon: INFO: 192.168.3.254[500] used as isakmp port
(fd=8)
Sep 23 14:27:25    racoon: INFO: 127.0.0.1[500] used as isakmp port (fd=7)
Sep 23 14:27:25    racoon: INFO: @(#)This product linked OpenSSL 0.9.7d-p1
17 Mar 2004 (http://www.openssl.org/)
Sep 23 14:27:25    racoon: INFO: @(#)ipsec-tools 0.6.6
(http://ipsec-tools.sourceforge.net)

- 
Regards,

Paul Rae
Business Development Director

t : 08454 599930
m : 07769 654302
e : paul at impacttrainingsolutions dot co dot uk

Impact Training Solutions
36 Reid Road
Bathgate
West Lothian, EH48 2TX