From owner-freebsd-questions@FreeBSD.ORG Wed Mar 14 09:42:19 2007 Return-Path: X-Original-To: questions@freebsd.org Delivered-To: freebsd-questions@FreeBSD.ORG Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id 64EBF16A400 for ; Wed, 14 Mar 2007 09:42:19 +0000 (UTC) (envelope-from tedm@toybox.placo.com) Received: from mail.freebsd-corp-net-guide.com (mail.web-strider.com [65.75.192.90]) by mx1.freebsd.org (Postfix) with ESMTP id B3CA513C458 for ; Wed, 14 Mar 2007 09:42:18 +0000 (UTC) (envelope-from tedm@toybox.placo.com) Received: from coolf89ea26645 (nat-rtr.freebsd-corp-net-guide.com [65.75.197.130]) by mail.freebsd-corp-net-guide.com (8.13.8/8.13.8) with SMTP id l2DGUBqp038189; Tue, 13 Mar 2007 09:30:12 -0700 (PDT) (envelope-from tedm@toybox.placo.com) Message-ID: <009901c7658c$d1d14c50$3c01a8c0@coolf89ea26645> From: "Ted Mittelstaedt" To: "Alexey Zakirov" , References: Date: Tue, 13 Mar 2007 08:29:47 -0800 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2800.1807 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1807 X-Greylist: Sender IP whitelisted, not delayed by milter-greylist-3.0 (mail.freebsd-corp-net-guide.com [65.75.192.90]); Tue, 13 Mar 2007 09:30:12 -0700 (PDT) Cc: Subject: Re: Problem with VPN and LinkSYS BEFSX41 X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 14 Mar 2007 09:42:19 -0000 We had the same problem last year when we ran a tunnel between a Cisco 7200 running Cisco IOS and a BEF SX 41. Keep in mind that Cisco now owns Linksys. In short, the owners of Linksys obviously know that the Linksys product is garbage but they have not released a fix for it's firmware. I rechristened that particular model the BEF SUX 41. It seems to fit. Eventually the BEF burned up and I was rid of dealing with it. Hoo Boy the customer lost $50 that they spent on it!! Moral of the story: Crappy hardware does not a stable network make. While you probably won't want to give Linksys any further business, you should know that the Linksys RV042 is a vastly superior implementation of the same product. Ted ----- Original Message ----- From: "Alexey Zakirov" To: Sent: Tuesday, March 13, 2007 1:13 AM Subject: Problem with VPN and LinkSYS BEFSX41 > Hello! > > Situation: FreeBSD 5.3-Release + pf + racoon at local end and LinkSys > BEFSX41 v2.1 firmware 1.52.9 at remote. > Lifetime of phase 1 and phase 2 is the same and equal 3600 sec. > Tunnel is getting up. I use setkey -D to SAD entries. There are 2 entries - > inbound and outbound. OK > When lifetime ends, there become 3 SAD entries - 1 outbound and 2 inbound. > Number of inbound SAD entries is growing until tunnel goes down. > > Please help me, what's the cause? > > Yours, > Alexey Zakirov > > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org" >