LinuxQuestions.org
Visit Jeremy's Blog.
Home Forums Tutorials Articles Register
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Networking
Reload this Page ping behaviour when ipsec peer is not available
User Name
Password
Linux - Networking This forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.

Notices


Reply
  Search this Thread
Old 04-15-2012, 11:15 PM   #1
barrysam
LQ Newbie
 
Registered: Apr 2012
Posts: 1

Rep: Reputation: Disabled
Unhappy ping behaviour when ipsec peer is not available

When a connection is configured for ipsec in my case using strongswan and the peer of the connection is not responding (say it is unreachable) I see the ping behavior as below

root@ffd-ipsec-189 sanjay]# ping 10.204.74.188

basically ping is stuck or blocked. This behaviour also manifests in any program that tries to open a socket to the same peer and gets blocked.


Now if I do not have a connection configured in the /etc/ipsec.conf I see that the ping responds like this

root@ffd-ipsec-189 sanjay]# ping 10.204.74.188
PING 10.204.74.188 (10.204.74.188) 56(84) bytes of data.
From 10.204.74.189 icmp_seq=2 Destination Host Unreachable
From 10.204.74.189 icmp_seq=3 Destination Host Unreachable
From 10.204.74.189 icmp_seq=5 Destination Host Unreachable

What settings can be done for a timeout to occurs to that a program that is trying to reach an ip may not be blocked forever if ipsec SA cannot be established ?
 
Old 04-16-2012, 02:52 PM   #2
tsod
LQ Newbie
 
Registered: Apr 2007
Location: OK
Distribution: SUSE 11 (SLES)
Posts: 2

Rep: Reputation: 1
ping -c1 -w5 10.204.74.188

This will cause ping to exit after a single packet if successful or to terminate after 5 seconds if nothing is returned.
 
1 members found this post helpful.
  


Reply



Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
[SOLVED] Unable to ping local subnet behind peer in IPSEC tusharsharma43 Linux - Networking 2 12-05-2011 05:50 AM
racoon ipsec enable machin not able to ping each other renuaseri Linux - Newbie 1 05-23-2010 04:55 AM
strange behaviour of ping UddUnderline Linux - Networking 1 05-08-2006 07:27 AM
peer-to-peer( lime wire ) is not letting prozilla to download at satisfactory speed b0nd Linux - General 3 10-21-2005 01:36 PM
can't browse LAN with redhat 9,2 peer to peer pcs, they ping right, newbee vinayak_shukre Linux - Networking 1 02-17-2004 09:49 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Networking

All times are GMT -5. The time now is 07:39 PM.

Contact Us - Advertising Info - Rules - Privacy - LQ Merchandise - Donations - Contributing Member - LQ Sitemap -
Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration