From owner-freebsd-net@FreeBSD.ORG  Mon Jan 30 08:28:08 2006
Return-Path: <owner-freebsd-net@FreeBSD.ORG>
X-Original-To: freebsd-net@freebsd.org
Delivered-To: freebsd-net@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 765D516A420
	for <freebsd-net@freebsd.org>; Mon, 30 Jan 2006 08:28:08 +0000 (GMT)
	(envelope-from subscriber@osk.com.ua)
Received: from gandalf.osk.com.ua (osk.com.ua [195.5.17.76])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 98D4E43D45
	for <freebsd-net@freebsd.org>; Mon, 30 Jan 2006 08:28:06 +0000 (GMT)
	(envelope-from subscriber@osk.com.ua)
Received: from localhost (localhost [127.0.0.1])
	by gandalf.osk.com.ua (Postfix) with ESMTP id DAE4978C1F;
	Mon, 30 Jan 2006 10:29:21 +0200 (EET)
Received: from gandalf.osk.com.ua ([127.0.0.1])
	by localhost (gandalf.osk.com.ua [127.0.0.1]) (amavisd-new, port 10024)
	with ESMTP id 82467-12; Mon, 30 Jan 2006 10:29:21 +0200 (EET)
Received: from OLEG (unknown [192.168.82.111])
	by gandalf.osk.com.ua (Postfix) with ESMTP id 0B7AC78C1C;
	Mon, 30 Jan 2006 10:29:20 +0200 (EET)
Date: Mon, 30 Jan 2006 10:28:18 +0200
From: Oleg Tarasov <subscriber@osk.com.ua>
X-Mailer: The Bat! (v3.64.01 Christmas Edition) Professional
X-Priority: 3 (Normal)
Message-ID: <1163905124.20060130102818@osk.com.ua>
To: Julian Elischer <julian@elischer.org>
In-Reply-To: <43DA644E.9090703@elischer.org>
References: <83462512.20060126181018@osk.com.ua>
	<43D92848.2050005@elischer.org> <20060127084457.GA21360@zen.inc>
	<603364524.20060127113646@osk.com.ua>
	<43DA644E.9090703@elischer.org>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
X-Virus-Scanned: amavisd-new at osk.com.ua
Cc: freebsd-net@freebsd.org, VANHULLEBUS Yvan <vanhu_bsd@zeninc.net>
Subject: Re: Duplicate SAD entries lead to ESP tunnel malfunction
X-BeenThere: freebsd-net@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
Reply-To: FreeBSD MailList <subscriber@osk.com.ua>
List-Id: Networking and TCP/IP with FreeBSD <freebsd-net.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
	<mailto:freebsd-net-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-net>
List-Post: <mailto:freebsd-net@freebsd.org>
List-Help: <mailto:freebsd-net-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
	<mailto:freebsd-net-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Mon, 30 Jan 2006 08:28:08 -0000

Hello,

Julian Elischer <julian@elischer.org> wrote:

> let us know if that solves your problem..

> remember you don't need to reboot to set it..
> the result should be instantaneous.

net.key.preferred_oldsa=0

really helped in this situation. Both tunnels from now on work
perfectly inspite on connection problems or any other problems.

It is not clear no me why this option should ever be set to 1 as it
will certainly bring to a malfunction if any problem occurs.

I suggest to change the default value of this one to 0 in FreeBSD
distribution.


-- 
Best regards,
 Oleg Tarasov                          mailto:subscriber@osk.com.ua