From owner-freebsd-net@FreeBSD.ORG  Tue Jul 12 22:42:52 2011
Return-Path: <owner-freebsd-net@FreeBSD.ORG>
Delivered-To: freebsd-net@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id C7385106564A
	for <freebsd-net@freebsd.org>; Tue, 12 Jul 2011 22:42:52 +0000 (UTC)
	(envelope-from cswiger@mac.com)
Received: from asmtpout022.mac.com (asmtpout022.mac.com [17.148.16.97])
	by mx1.freebsd.org (Postfix) with ESMTP id AF0E98FC18
	for <freebsd-net@freebsd.org>; Tue, 12 Jul 2011 22:42:52 +0000 (UTC)
MIME-version: 1.0
Content-transfer-encoding: 7BIT
Content-type: text/plain; CHARSET=US-ASCII
Received: from cswiger1.apple.com ([17.209.4.71])
	by asmtp022.mac.com (Oracle Communications Messaging Exchange Server
	7u4-20.01 64bit (built Nov 21 2010)) with ESMTPSA id
	<0LO8003E1SFG1X70@asmtp022.mac.com>
	for freebsd-net@freebsd.org; Tue, 12 Jul 2011 15:42:52 -0700 (PDT)
X-Proofpoint-Virus-Version: vendor=fsecure
	engine=2.50.10432:5.4.6813,1.0.211,0.0.0000
	definitions=2011-07-12_09:2011-07-12, 2011-07-12,
	1970-01-01 signatures=0
X-Proofpoint-Spam-Details: rule=notspam policy=default score=0 spamscore=0
	ipscore=0 suspectscore=0 phishscore=0 bulkscore=0 adultscore=0
	classifier=spam
	adjust=0 reason=mlx engine=6.0.2-1012030000 definitions=main-1107120174
From: Chuck Swiger <cswiger@mac.com>
In-reply-to: <4E1C9FEA.2080608@visi.com>
Date: Tue, 12 Jul 2011 15:42:51 -0700
Message-id: <5458975C-9FA3-4AB6-9535-3D7BD152378B@mac.com>
References: <4E159C5A.5090702@visi.com>
	<13D65A4C-F874-4970-A070-AA0392416680@mac.com>
	<4E1C9FEA.2080608@visi.com>
To: Paul Keusemann <pkeusem@visi.com>
X-Mailer: Apple Mail (2.1084)
Cc: freebsd-net@freebsd.org
Subject: Re: Debugging dropped shell connections over a VPN
X-BeenThere: freebsd-net@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Networking and TCP/IP with FreeBSD <freebsd-net.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
	<mailto:freebsd-net-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-net>
List-Post: <mailto:freebsd-net@freebsd.org>
List-Help: <mailto:freebsd-net-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
	<mailto:freebsd-net-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Tue, 12 Jul 2011 22:42:52 -0000

On Jul 12, 2011, at 12:26 PM, Paul Keusemann wrote:
> So, any other ideas on how to debug this?

Gather data with tcpdump.  If you do it on one of the VPN endpoints, you ought to see the VPN contents rather than just packets going by in the encrypted tunnel.

> Anybody know how to get racoon to log everything to one file?  Right now, depending on the log level, I am getting messages in racoon.log (specified with -l at startup), messages and debug.log.  It would really be nice to have just one log to look at.

This is likely governed by /etc/syslog.conf, but if you specify -l then racoon shouldn't use syslog logging.

Regards,
-- 
-Chuck