From owner-freebsd-net@FreeBSD.ORG Fri Dec 26 11:08:44 2008 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 1D5DB106564A for ; Fri, 26 Dec 2008 11:08:44 +0000 (UTC) (envelope-from nrml@att.net) Received: from web83807.mail.sp1.yahoo.com (web83807.mail.sp1.yahoo.com [69.147.85.77]) by mx1.freebsd.org (Postfix) with SMTP id 07B338FC19 for ; Fri, 26 Dec 2008 11:08:43 +0000 (UTC) (envelope-from nrml@att.net) Received: (qmail 2784 invoked by uid 60001); 26 Dec 2008 10:42:01 -0000 X-YMail-OSG: LRpWNK0VM1lFRDkrDB1g6kSas7ssHuZCQZmCqxe.oWJbL1H5.61tHRAC2J8e6Lqt._6.UZFTiYN9WpIMEDig9DEVOw0lxLvMYFiFEJcV5ahESskl_7Q4.7UmI_1hlywFKYp6magmp2Ww0KMEVdbiBVlJ Received: from [69.43.143.172] by web83807.mail.sp1.yahoo.com via HTTP; Fri, 26 Dec 2008 02:42:01 PST X-Mailer: YahooMailRC/1155.45 YahooMailWebService/0.7.218.2 Date: Fri, 26 Dec 2008 02:42:01 -0800 (PST) From: nrml nrml To: freebsd-net@freebsd.org MIME-Version: 1.0 Message-ID: <960173.98196.qm@web83807.mail.sp1.yahoo.com> Content-Type: text/plain; charset=us-ascii X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Subject: IPSec + Packet loss and ipsec_common_input error X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 26 Dec 2008 11:08:44 -0000 All, So I've got IPSec installed and configured and I can communicate across the tunnel just fine but I got some pretty bad packet loss: I've got server1 connected to server2 in another building via a T1 circuit. This is from server1 to a sever behind server2: --- 192.168.20.x ping statistics --- 10 packets transmitted, 6 packets received, 40.0% packet loss round-trip min/avg/max/stddev = 253.545/263.815/270.700/5.500 ms This is from server2 to a machine behind server1 --- 192.168.10.x ping statistics --- 10 packets transmitted, 6 packets received, 40.0% packet loss round-trip min/avg/max/stddev = 258.654/272.065/286.893/8.608 ms And on top of that I've got these messags on both server1 and server2 but most of them are on server1 for some reason: ipsec_common_input: no key association found for SA ipsec_common_input: no key association found for SA ipsec_common_input: no key association found for SA ipsec_common_input: no key association found for SA ipsec_common_input: no key association found for SA ipsec_common_input: no key association found for SA Anyone have any clues? At this point I'm thinking its either just the connection is just bogged down or.. I'm not sure. Thanks /gabe