Issue #3027: ipsec connect not established, log show :error writing to socket: Operation not permitted - strongSwan

Issue #3027

ipsec connect not established, log show :error writing to socket: Operation not permitted

Added by Devin Chai over 6 years ago. Updated over 6 years ago.

Status:

Closed

Priority:

Normal

Assignee:

Tobias Brunner

Category:

configuration

Affected version:

5.3.3

Resolution:

No change required

Description

Dear strongswan's teams,

our ipsec connect not established whatever i restart ipsec; please help us analyze this issue! thanks!

ipsec status:

Status of IKE charon daemon (strongSwan 5.3.3, Linux 3.14.43, armv7l):
  uptime: 15 minutes, since Apr 05 10:31:13 2019
  malloc: sbrk 143360, mmap 0, used 112992, free 30368
  worker threads: 9 of 16 idle, 7/0/0/0 working, job queue: 0/0/0/0, scheduled: 1
  loaded plugins: charon uci aes des sha1 sha2 md5 pem pkcs1 x509 curl revocation gmp random nonce hmac stroke kernel-netlink socket-default updown eap-identity eap-md5 eap-radius eap-tls
Listening IP addresses:
  yyy.yyy.yyy.yyy
  172.21.124.193
Connections:
      netnet:  %any...xxx.xxx.xxx.xxx  IKEv1 Aggressive
      netnet:   local:  [MWD-FACW1996@facw] uses pre-shared key authentication
      netnet:   remote: [xxx.xxx.xxx.xxx] uses pre-shared key authentication
      netnet:   child:  172.21.124.192/28 === 172.16.0.0/16 TUNNEL
Security Associations (0 up, 1 connecting):
      netnet[9]: CONNECTING, yyy.yyy.yyy.yyy[MWD-FACW1996@facw]...xxx.xxx.xxx.xxx[%any]
      netnet[9]: IKEv1 SPIs: fdceb306671a3db0_i* 0000000000000000_r
      netnet[9]: Tasks queued: QUICK_MODE 
      netnet[9]: Tasks active: ISAKMP_VENDOR ISAKMP_CERT_PRE AGGRESSIVE_MODE ISAKMP_CERT_POST ISAKMP_NATD

strongswan log:

Apr  5 10:31:13 00[DMN] Starting IKE charon daemon (strongSwan 5.3.3, Linux 3.14.43, armv7l)
Apr  5 10:31:13 00[LIB] curl SSL backend 'PolarSSL/1.3.15' not supported, https:// disabled
Apr  5 10:31:13 00[CFG] loading ca certificates from '/etc/ipsec.d/cacerts'
Apr  5 10:31:13 00[CFG] loading aa certificates from '/etc/ipsec.d/aacerts'
Apr  5 10:31:13 00[CFG] loading ocsp signer certificates from '/etc/ipsec.d/ocspcerts'
Apr  5 10:31:13 00[CFG] loading attribute certificates from '/etc/ipsec.d/acerts'
Apr  5 10:31:13 00[CFG] loading crls from '/etc/ipsec.d/crls'
Apr  5 10:31:13 00[CFG] loading secrets from '/etc/ipsec.secrets'
Apr  5 10:31:13 00[CFG]   loaded IKE secret for %any
Apr  5 10:31:13 00[CFG] loaded 0 RADIUS server configurations
Apr  5 10:31:13 00[LIB] loaded plugins: charon uci aes des sha1 sha2 md5 pem pkcs1 x509 curl revocation gmp random nonce hmac stroke kernel-netlink socket-default updown eap-identity eap-md5 eap-radius eap-tls
Apr  5 10:31:13 00[JOB] spawning 16 worker threads
Apr  5 10:31:13 04[CFG] received stroke: add connection 'netnet'
Apr  5 10:31:13 04[CFG] added configuration 'netnet'
Apr  5 10:31:13 02[CFG] received stroke: initiate 'netnet'
Apr  5 10:31:13 02[IKE] <netnet|1> initiating Aggressive Mode IKE_SA netnet[1] to xxx.xxx.xxx.xxx
Apr  5 10:31:13 02[ENC] <netnet|1> generating AGGRESSIVE request 0 [ SA KE No ID V V V V ]
Apr  5 10:31:13 02[NET] <netnet|1> sending packet: from yyy.yyy.yyy.yyy[500] to xxx.xxx.xxx.xxx[500] (481 bytes)
Apr  5 10:31:13 07[NET] error writing to socket: Operation not permitted
Apr  5 10:31:17 16[IKE] <netnet|1> sending retransmit 1 of request message ID 0, seq 1
Apr  5 10:31:17 16[NET] <netnet|1> sending packet: from yyy.yyy.yyy.yyy[500] to xxx.xxx.xxx.xxx[500] (481 bytes)
Apr  5 10:31:17 07[NET] error writing to socket: Operation not permitted
Apr  5 10:31:24 04[IKE] <netnet|1> sending retransmit 2 of request message ID 0, seq 1
Apr  5 10:31:24 04[NET] <netnet|1> sending packet: from yyy.yyy.yyy.yyy[500] to xxx.xxx.xxx.xxx[500] (481 bytes)
Apr  5 10:31:24 07[NET] error writing to socket: Operation not permitted
Apr  5 10:31:37 04[IKE] <netnet|1> sending retransmit 3 of request message ID 0, seq 1
Apr  5 10:31:37 04[NET] <netnet|1> sending packet: from yyy.yyy.yyy.yyy[500] to xxx.xxx.xxx.xxx[500] (481 bytes)
Apr  5 10:31:37 07[NET] error writing to socket: Operation not permitted
Apr  5 10:32:00 06[IKE] <netnet|1> sending retransmit 4 of request message ID 0, seq 1
Apr  5 10:32:00 06[NET] <netnet|1> sending packet: from yyy.yyy.yyy.yyy[500] to xxx.xxx.xxx.xxx[500] (481 bytes)
Apr  5 10:32:00 07[NET] error writing to socket: Operation not permitted
Apr  5 10:32:42 16[IKE] <netnet|1> sending retransmit 5 of request message ID 0, seq 1
Apr  5 10:32:42 16[NET] <netnet|1> sending packet: from yyy.yyy.yyy.yyy[500] to xxx.xxx.xxx.xxx[500] (481 bytes)
Apr  5 10:32:42 07[NET] error writing to socket: Operation not permitted
Apr  5 10:33:06 12[CFG] received stroke: terminate 'netnet'
Apr  5 10:33:06 14[IKE] <netnet|1> destroying IKE_SA in state CONNECTING without notification
Apr  5 10:33:07 06[CFG] received stroke: initiate 'netnet'
Apr  5 10:33:07 16[IKE] <netnet|2> initiating Aggressive Mode IKE_SA netnet[2] to xxx.xxx.xxx.xxx
Apr  5 10:33:08 16[ENC] <netnet|2> generating AGGRESSIVE request 0 [ SA KE No ID V V V V ]
Apr  5 10:33:08 16[NET] <netnet|2> sending packet: from yyy.yyy.yyy.yyy[500] to xxx.xxx.xxx.xxx[500] (481 bytes)
Apr  5 10:33:08 07[NET] error writing to socket: Operation not permitted
Apr  5 10:33:12 14[IKE] <netnet|2> sending retransmit 1 of request message ID 0, seq 1
Apr  5 10:33:12 14[NET] <netnet|2> sending packet: from yyy.yyy.yyy.yyy[500] to xxx.xxx.xxx.xxx[500] (481 bytes)
Apr  5 10:33:12 07[NET] error writing to socket: Operation not permitted
Apr  5 10:33:19 12[IKE] <netnet|2> sending retransmit 2 of request message ID 0, seq 1
Apr  5 10:33:19 12[NET] <netnet|2> sending packet: from yyy.yyy.yyy.yyy[500] to xxx.xxx.xxx.xxx[500] (481 bytes)
Apr  5 10:33:19 07[NET] error writing to socket: Operation not permitted
Apr  5 10:33:32 12[IKE] <netnet|2> sending retransmit 3 of request message ID 0, seq 1
Apr  5 10:33:32 12[NET] <netnet|2> sending packet: from yyy.yyy.yyy.yyy[500] to xxx.xxx.xxx.xxx[500] (481 bytes)
Apr  5 10:33:32 07[NET] error writing to socket: Operation not permitted
Apr  5 10:33:56 16[IKE] <netnet|2> sending retransmit 4 of request message ID 0, seq 1
Apr  5 10:33:56 16[NET] <netnet|2> sending packet: from yyy.yyy.yyy.yyy[500] to xxx.xxx.xxx.xxx[500] (481 bytes)
Apr  5 10:33:56 07[NET] error writing to socket: Operation not permitted
Apr  5 10:34:38 03[IKE] <netnet|2> sending retransmit 5 of request message ID 0, seq 1
Apr  5 10:34:38 03[NET] <netnet|2> sending packet: from yyy.yyy.yyy.yyy[500] to xxx.xxx.xxx.xxx[500] (481 bytes)
Apr  5 10:34:38 07[NET] error writing to socket: Operation not permitted
Apr  5 10:34:58 03[CFG] received stroke: terminate 'netnet'
Apr  5 10:34:58 14[IKE] <netnet|2> destroying IKE_SA in state CONNECTING without notification
Apr  5 10:34:59 04[CFG] received stroke: initiate 'netnet'
Apr  5 10:34:59 12[IKE] <netnet|3> initiating Aggressive Mode IKE_SA netnet[3] to xxx.xxx.xxx.xxx
Apr  5 10:34:59 12[ENC] <netnet|3> generating AGGRESSIVE request 0 [ SA KE No ID V V V V ]
Apr  5 10:34:59 12[NET] <netnet|3> sending packet: from yyy.yyy.yyy.yyy[500] to xxx.xxx.xxx.xxx[500] (481 bytes)
Apr  5 10:34:59 07[NET] error writing to socket: Operation not permitted
Apr  5 10:35:03 14[IKE] <netnet|3> sending retransmit 1 of request message ID 0, seq 1
Apr  5 10:35:03 14[NET] <netnet|3> sending packet: from yyy.yyy.yyy.yyy[500] to xxx.xxx.xxx.xxx[500] (481 bytes)
Apr  5 10:35:03 07[NET] error writing to socket: Operation not permitted
Apr  5 10:35:10 03[IKE] <netnet|3> sending retransmit 2 of request message ID 0, seq 1
Apr  5 10:35:10 03[NET] <netnet|3> sending packet: from yyy.yyy.yyy.yyy[500] to xxx.xxx.xxx.xxx[500] (481 bytes)
Apr  5 10:35:10 07[NET] error writing to socket: Operation not permitted
Apr  5 10:35:23 06[IKE] <netnet|3> sending retransmit 3 of request message ID 0, seq 1
Apr  5 10:35:23 06[NET] <netnet|3> sending packet: from yyy.yyy.yyy.yyy[500] to xxx.xxx.xxx.xxx[500] (481 bytes)
Apr  5 10:35:23 07[NET] error writing to socket: Operation not permitted
Apr  5 10:35:46 16[IKE] <netnet|3> sending retransmit 4 of request message ID 0, seq 1
Apr  5 10:35:46 16[NET] <netnet|3> sending packet: from yyy.yyy.yyy.yyy[500] to xxx.xxx.xxx.xxx[500] (481 bytes)
Apr  5 10:35:46 07[NET] error writing to socket: Operation not permitted
Apr  5 10:36:28 05[IKE] <netnet|3> sending retransmit 5 of request message ID 0, seq 1
Apr  5 10:36:28 05[NET] <netnet|3> sending packet: from yyy.yyy.yyy.yyy[500] to xxx.xxx.xxx.xxx[500] (481 bytes)
Apr  5 10:36:28 07[NET] error writing to socket: Operation not permitted
Apr  5 10:36:49 05[CFG] received stroke: terminate 'netnet'
Apr  5 10:36:49 14[IKE] <netnet|3> destroying IKE_SA in state CONNECTING without notification
Apr  5 10:36:51 02[CFG] received stroke: initiate 'netnet'
Apr  5 10:36:51 16[IKE] <netnet|4> initiating Aggressive Mode IKE_SA netnet[4] to xxx.xxx.xxx.xxx
Apr  5 10:36:51 16[ENC] <netnet|4> generating AGGRESSIVE request 0 [ SA KE No ID V V V V ]
Apr  5 10:36:51 16[NET] <netnet|4> sending packet: from yyy.yyy.yyy.yyy[500] to xxx.xxx.xxx.xxx[500] (481 bytes)
Apr  5 10:36:51 07[NET] error writing to socket: Operation not permitted
Apr  5 10:36:55 09[IKE] <netnet|4> sending retransmit 1 of request message ID 0, seq 1
Apr  5 10:36:55 09[NET] <netnet|4> sending packet: from yyy.yyy.yyy.yyy[500] to xxx.xxx.xxx.xxx[500] (481 bytes)
Apr  5 10:36:55 07[NET] error writing to socket: Operation not permitted
Apr  5 10:37:02 16[IKE] <netnet|4> sending retransmit 2 of request message ID 0, seq 1
Apr  5 10:37:02 16[NET] <netnet|4> sending packet: from yyy.yyy.yyy.yyy[500] to xxx.xxx.xxx.xxx[500] (481 bytes)
Apr  5 10:37:02 07[NET] error writing to socket: Operation not permitted
Apr  5 10:37:15 08[IKE] <netnet|4> sending retransmit 3 of request message ID 0, seq 1
Apr  5 10:37:15 08[NET] <netnet|4> sending packet: from yyy.yyy.yyy.yyy[500] to xxx.xxx.xxx.xxx[500] (481 bytes)
Apr  5 10:37:15 07[NET] error writing to socket: Operation not permitted
Apr  5 10:37:38 13[IKE] <netnet|4> sending retransmit 4 of request message ID 0, seq 1
Apr  5 10:37:38 13[NET] <netnet|4> sending packet: from yyy.yyy.yyy.yyy[500] to xxx.xxx.xxx.xxx[500] (481 bytes)
Apr  5 10:37:38 07[NET] error writing to socket: Operation not permitted
Apr  5 10:38:20 16[IKE] <netnet|4> sending retransmit 5 of request message ID 0, seq 1
Apr  5 10:38:20 16[NET] <netnet|4> sending packet: from yyy.yyy.yyy.yyy[500] to xxx.xxx.xxx.xxx[500] (481 bytes)
Apr  5 10:38:20 07[NET] error writing to socket: Operation not permitted
Apr  5 10:38:41 08[CFG] received stroke: terminate 'netnet'
Apr  5 10:38:41 12[IKE] <netnet|4> destroying IKE_SA in state CONNECTING without notification
Apr  5 10:38:42 09[CFG] received stroke: initiate 'netnet'
Apr  5 10:38:42 14[IKE] <netnet|5> initiating Aggressive Mode IKE_SA netnet[5] to xxx.xxx.xxx.xxx
Apr  5 10:38:42 14[ENC] <netnet|5> generating AGGRESSIVE request 0 [ SA KE No ID V V V V ]
Apr  5 10:38:42 14[NET] <netnet|5> sending packet: from yyy.yyy.yyy.yyy[500] to xxx.xxx.xxx.xxx[500] (481 bytes)
Apr  5 10:38:42 07[NET] error writing to socket: Operation not permitted
Apr  5 10:38:46 08[IKE] <netnet|5> sending retransmit 1 of request message ID 0, seq 1
Apr  5 10:38:46 08[NET] <netnet|5> sending packet: from yyy.yyy.yyy.yyy[500] to xxx.xxx.xxx.xxx[500] (481 bytes)
Apr  5 10:38:46 07[NET] error writing to socket: Operation not permitted
Apr  5 10:38:54 14[IKE] <netnet|5> sending retransmit 2 of request message ID 0, seq 1
Apr  5 10:38:54 14[NET] <netnet|5> sending packet: from yyy.yyy.yyy.yyy[500] to xxx.xxx.xxx.xxx[500] (481 bytes)
Apr  5 10:38:54 07[NET] error writing to socket: Operation not permitted
Apr  5 10:39:06 08[IKE] <netnet|5> sending retransmit 3 of request message ID 0, seq 1
Apr  5 10:39:06 08[NET] <netnet|5> sending packet: from yyy.yyy.yyy.yyy[500] to xxx.xxx.xxx.xxx[500] (481 bytes)
Apr  5 10:39:06 07[NET] error writing to socket: Operation not permitted
Apr  5 10:39:30 13[IKE] <netnet|5> sending retransmit 4 of request message ID 0, seq 1
Apr  5 10:39:30 13[NET] <netnet|5> sending packet: from yyy.yyy.yyy.yyy[500] to xxx.xxx.xxx.xxx[500] (481 bytes)
Apr  5 10:39:30 07[NET] error writing to socket: Operation not permitted
Apr  5 10:40:12 03[IKE] <netnet|5> sending retransmit 5 of request message ID 0, seq 1
Apr  5 10:40:12 03[NET] <netnet|5> sending packet: from yyy.yyy.yyy.yyy[500] to xxx.xxx.xxx.xxx[500] (481 bytes)
Apr  5 10:40:12 07[NET] error writing to socket: Operation not permitted
Apr  5 10:40:33 04[CFG] received stroke: terminate 'netnet'
Apr  5 10:40:33 16[IKE] <netnet|5> destroying IKE_SA in state CONNECTING without notification
Apr  5 10:40:34 14[CFG] received stroke: initiate 'netnet'
Apr  5 10:40:34 02[IKE] <netnet|6> initiating Aggressive Mode IKE_SA netnet[6] to xxx.xxx.xxx.xxx
Apr  5 10:40:34 02[ENC] <netnet|6> generating AGGRESSIVE request 0 [ SA KE No ID V V V V ]
Apr  5 10:40:34 02[NET] <netnet|6> sending packet: from yyy.yyy.yyy.yyy[500] to xxx.xxx.xxx.xxx[500] (481 bytes)
Apr  5 10:40:34 07[NET] error writing to socket: Operation not permitted
Apr  5 10:40:38 06[IKE] <netnet|6> sending retransmit 1 of request message ID 0, seq 1
Apr  5 10:40:38 06[NET] <netnet|6> sending packet: from yyy.yyy.yyy.yyy[500] to xxx.xxx.xxx.xxx[500] (481 bytes)
Apr  5 10:40:38 07[NET] error writing to socket: Operation not permitted
Apr  5 10:40:45 05[IKE] <netnet|6> sending retransmit 2 of request message ID 0, seq 1
Apr  5 10:40:45 05[NET] <netnet|6> sending packet: from yyy.yyy.yyy.yyy[500] to xxx.xxx.xxx.xxx[500] (481 bytes)
Apr  5 10:40:45 07[NET] error writing to socket: Operation not permitted
Apr  5 10:40:58 05[IKE] <netnet|6> sending retransmit 3 of request message ID 0, seq 1
Apr  5 10:40:58 05[NET] <netnet|6> sending packet: from yyy.yyy.yyy.yyy[500] to xxx.xxx.xxx.xxx[500] (481 bytes)
Apr  5 10:40:58 07[NET] error writing to socket: Operation not permitted
Apr  5 10:41:22 03[IKE] <netnet|6> sending retransmit 4 of request message ID 0, seq 1
Apr  5 10:41:22 03[NET] <netnet|6> sending packet: from yyy.yyy.yyy.yyy[500] to xxx.xxx.xxx.xxx[500] (481 bytes)
Apr  5 10:41:22 07[NET] error writing to socket: Operation not permitted
Apr  5 10:42:04 06[IKE] <netnet|6> sending retransmit 5 of request message ID 0, seq 1
Apr  5 10:42:04 06[NET] <netnet|6> sending packet: from yyy.yyy.yyy.yyy[500] to xxx.xxx.xxx.xxx[500] (481 bytes)
Apr  5 10:42:04 07[NET] error writing to socket: Operation not permitted
Apr  5 10:42:24 08[CFG] received stroke: terminate 'netnet'
Apr  5 10:42:24 06[IKE] <netnet|6> destroying IKE_SA in state CONNECTING without notification
Apr  5 10:42:25 02[CFG] received stroke: initiate 'netnet'
Apr  5 10:42:25 04[IKE] <netnet|7> initiating Aggressive Mode IKE_SA netnet[7] to xxx.xxx.xxx.xxx
Apr  5 10:42:25 04[ENC] <netnet|7> generating AGGRESSIVE request 0 [ SA KE No ID V V V V ]
Apr  5 10:42:25 04[NET] <netnet|7> sending packet: from yyy.yyy.yyy.yyy[500] to xxx.xxx.xxx.xxx[500] (481 bytes)
Apr  5 10:42:25 07[NET] error writing to socket: Operation not permitted
Apr  5 10:42:29 12[IKE] <netnet|7> sending retransmit 1 of request message ID 0, seq 1
Apr  5 10:42:29 12[NET] <netnet|7> sending packet: from yyy.yyy.yyy.yyy[500] to xxx.xxx.xxx.xxx[500] (481 bytes)
Apr  5 10:42:29 07[NET] error writing to socket: Operation not permitted
Apr  5 10:42:37 03[IKE] <netnet|7> sending retransmit 2 of request message ID 0, seq 1
Apr  5 10:42:37 03[NET] <netnet|7> sending packet: from yyy.yyy.yyy.yyy[500] to xxx.xxx.xxx.xxx[500] (481 bytes)
Apr  5 10:42:37 07[NET] error writing to socket: Operation not permitted
Apr  5 10:42:50 12[IKE] <netnet|7> sending retransmit 3 of request message ID 0, seq 1
Apr  5 10:42:50 12[NET] <netnet|7> sending packet: from yyy.yyy.yyy.yyy[500] to xxx.xxx.xxx.xxx[500] (481 bytes)
Apr  5 10:42:50 07[NET] error writing to socket: Operation not permitted
Apr  5 10:43:13 05[IKE] <netnet|7> sending retransmit 4 of request message ID 0, seq 1
Apr  5 10:43:13 05[NET] <netnet|7> sending packet: from yyy.yyy.yyy.yyy[500] to xxx.xxx.xxx.xxx[500] (481 bytes)
Apr  5 10:43:13 07[NET] error writing to socket: Operation not permitted
Apr  5 10:43:55 06[IKE] <netnet|7> sending retransmit 5 of request message ID 0, seq 1
Apr  5 10:43:55 06[NET] <netnet|7> sending packet: from yyy.yyy.yyy.yyy[500] to xxx.xxx.xxx.xxx[500] (481 bytes)
Apr  5 10:43:55 07[NET] error writing to socket: Operation not permitted
Apr  5 10:44:16 12[CFG] received stroke: terminate 'netnet'
Apr  5 10:44:16 03[IKE] <netnet|7> destroying IKE_SA in state CONNECTING without notification
Apr  5 10:44:17 08[CFG] received stroke: initiate 'netnet'
Apr  5 10:44:17 16[IKE] <netnet|8> initiating Aggressive Mode IKE_SA netnet[8] to xxx.xxx.xxx.xxx
Apr  5 10:44:17 16[ENC] <netnet|8> generating AGGRESSIVE request 0 [ SA KE No ID V V V V ]
Apr  5 10:44:17 16[NET] <netnet|8> sending packet: from yyy.yyy.yyy.yyy[500] to xxx.xxx.xxx.xxx[500] (481 bytes)
Apr  5 10:44:17 07[NET] error writing to socket: Operation not permitted
Apr  5 10:44:21 14[IKE] <netnet|8> sending retransmit 1 of request message ID 0, seq 1
Apr  5 10:44:21 14[NET] <netnet|8> sending packet: from yyy.yyy.yyy.yyy[500] to xxx.xxx.xxx.xxx[500] (481 bytes)
Apr  5 10:44:21 07[NET] error writing to socket: Operation not permitted
Apr  5 10:44:28 16[IKE] <netnet|8> sending retransmit 2 of request message ID 0, seq 1
Apr  5 10:44:28 16[NET] <netnet|8> sending packet: from yyy.yyy.yyy.yyy[500] to xxx.xxx.xxx.xxx[500] (481 bytes)
Apr  5 10:44:28 07[NET] error writing to socket: Operation not permitted
Apr  5 10:44:41 16[IKE] <netnet|8> sending retransmit 3 of request message ID 0, seq 1
Apr  5 10:44:41 16[NET] <netnet|8> sending packet: from yyy.yyy.yyy.yyy[500] to xxx.xxx.xxx.xxx[500] (481 bytes)
Apr  5 10:44:41 07[NET] error writing to socket: Operation not permitted
Apr  5 10:45:05 06[IKE] <netnet|8> sending retransmit 4 of request message ID 0, seq 1
Apr  5 10:45:05 06[NET] <netnet|8> sending packet: from yyy.yyy.yyy.yyy[500] to xxx.xxx.xxx.xxx[500] (481 bytes)
Apr  5 10:45:05 07[NET] error writing to socket: Operation not permitted
Apr  5 10:45:47 12[IKE] <netnet|8> sending retransmit 5 of request message ID 0, seq 1
Apr  5 10:45:47 12[NET] <netnet|8> sending packet: from yyy.yyy.yyy.yyy[500] to xxx.xxx.xxx.xxx[500] (481 bytes)
Apr  5 10:45:47 07[NET] error writing to socket: Operation not permitted
Apr  5 10:46:08 13[CFG] received stroke: terminate 'netnet'
Apr  5 10:46:08 05[IKE] <netnet|8> destroying IKE_SA in state CONNECTING without notification
Apr  5 10:46:09 12[CFG] received stroke: initiate 'netnet'
Apr  5 10:46:09 06[IKE] <netnet|9> initiating Aggressive Mode IKE_SA netnet[9] to xxx.xxx.xxx.xxx
Apr  5 10:46:09 06[ENC] <netnet|9> generating AGGRESSIVE request 0 [ SA KE No ID V V V V ]
Apr  5 10:46:09 06[NET] <netnet|9> sending packet: from yyy.yyy.yyy.yyy[500] to xxx.xxx.xxx.xxx[500] (481 bytes)
Apr  5 10:46:09 07[NET] error writing to socket: Operation not permitted
Apr  5 10:46:13 14[IKE] <netnet|9> sending retransmit 1 of request message ID 0, seq 1
Apr  5 10:46:13 14[NET] <netnet|9> sending packet: from yyy.yyy.yyy.yyy[500] to xxx.xxx.xxx.xxx[500] (481 bytes)
Apr  5 10:46:13 07[NET] error writing to socket: Operation not permitted
Apr  5 10:46:20 16[IKE] <netnet|9> sending retransmit 2 of request message ID 0, seq 1
Apr  5 10:46:20 16[NET] <netnet|9> sending packet: from yyy.yyy.yyy.yyy[500] to xxx.xxx.xxx.xxx[500] (481 bytes)
Apr  5 10:46:20 07[NET] error writing to socket: Operation not permitted
Apr  5 10:46:33 13[IKE] <netnet|9> sending retransmit 3 of request message ID 0, seq 1
Apr  5 10:46:33 13[NET] <netnet|9> sending packet: from yyy.yyy.yyy.yyy[500] to xxx.xxx.xxx.xxx[500] (481 bytes)
Apr  5 10:46:33 07[NET] error writing to socket: Operation not permitted
Apr  5 10:46:56 05[IKE] <netnet|9> sending retransmit 4 of request message ID 0, seq 1
Apr  5 10:46:56 05[NET] <netnet|9> sending packet: from yyy.yyy.yyy.yyy[500] to xxx.xxx.xxx.xxx[500] (481 bytes)
Apr  5 10:46:56 07[NET] error writing to socket: Operation not permitted

History

#1 Updated by Tobias Brunner over 6 years ago

Description updated (diff)
Category set to configuration
Status changed from New to Feedback
Priority changed from High to Normal

Check/fix your firewall rules (see HelpRequests).

#2 Updated by Devin Chai over 6 years ago

Dear Tobias,
Thank you,It is firewall issue ,fixed!please close this issue!

#3 Updated by Tobias Brunner over 6 years ago

Status changed from Feedback to Closed
Resolution set to No change required

Project

General

Profile