投稿日:2004年06月17日 作成鷹の巣

No.16446 エラー「ADSL connection lost」の原因は?



エラー「ADSL connection lost」の原因は?

No.16446 投稿時間:2004年06月17日(Thu) 02:39 投稿者名:YukaYoshikawa URL:

長くてスイマセン。よろしくお願い致します。
全てRedHat9で(ipsec)VPNを構築しています。

jitaku.dyndns.com
|
WAN─daigaku.dyndns.net
|
shokuba.dyndns.co.jp

という構成になっていまして今現在は

[root@daigaku.dyndns.net]# rpm -qa |grep freeswan
freeswan-userland-2.01_2.4.20_8-0
freeswan-module-2.01_2.4.20_8-0

[root@daigaku.dyndns.net]# cat /etc/ipsec.conf | grep -v ^# | grep -v ^$
version 2.0 # conforms to second version of ipsec.conf specification
config setup
interfaces="ipsec0=ppp0"
klipsdebug=none
plutodebug=none
conn %default
type=tunnel
keyingtries=3
authby=rsasig
keylife=1h
pfs=yes
conn jitaku-to-daigaku
left=ddd.ddd.ddd.ddd
leftsubnet=192.168.3.0/24
leftid=@daigaku.dyndns.net
leftrsasigkey=0sAQO…iap
leftnexthop=DDD.DDD.DDD.DDD
right=jj.jjj.jjj.jjj
rightsubnet=192.168.0.0/24
rightid=@jitaku.dyndns.com
rightrsasigkey=0sAQ…9VU9
rightnexthop=JJJ.JJJ.JJJ.JJJ
auto=add
conn daigaku-to-shokuba
left=ddd.ddd.ddd.ddd
leftsubnet=192.168.3.0/24
leftid=@daigaku.dyndns.net
leftrsasigkey=0sAQ…jSRYiap
leftnexthop=DDD.DDD.DDD.DDD
right=sss.sss.sss.sss
rightsubnet=192.168.2.0/24
rightid=@shokuba.dyndns.co.jp
rightrsasigkey=0sAQN…5S6IXIn
rightnexthop=SSS.SSS.SSS.SSS
auto=add
conn block
auto=ignore
conn private
auto=ignore
conn private-or-clear
auto=ignore
conn clear-or-private
auto=ignore
conn clear
auto=ignore
conn packetdefault
auto=ignore

残りの2ホストの/etc/ipsec.confも同様に記述しています。

[root@daigaku.dyndns.net]# service ipsec start
[root@daigaku.dyndns.net]# ipsec auto --up jitaku-to-daigaku
[root@daigaku.dyndns.net]# ipsec auto --up daigaku-to-shokuba

daigaku.dyndns.net
/ \
shokuba.dyndns.co.jp─jitaku.dyndns.com

のVPNを構築しています。
正常な時には

[root@daigaku.dyndns.net]#
Kernel IP routing table
Destination Gateway Genmask Flags Metric Ref Use Iface
DDD.DDD.DDD.DDD 0.0.0.0 255.255.255.255 UH 0 0 0 ipsec0
DDD.DDD.DDD.DDD 0.0.0.0 255.255.255.255 UH 0 0 0 ppp0
192.168.4.0 0.0.0.0 255.255.255.0 U 0 0 0 eth2
192.168.3.0 0.0.0.0 255.255.255.0 U 0 0 0 eth0
192.168.0.0 DDD.DDD.DDD.DDD 255.255.255.0 UG 0 0 0 ipsec0
169.254.0.0 0.0.0.0 255.255.0.0 U 0 0 0 eth2
127.0.0.0 0.0.0.0 255.0.0.0 U 0 0 0 lo
0.0.0.0 0.0.0.0 0.0.0.0 U 0 0 0 ppp0

となっています。
でも下記のようなエラーログ(/var/logmessages)が出て、ppp0が消滅してしまって

[root@daigaku.dyndns.net]#
Kernel IP routing table
Destination Gateway Genmask Flags Metric Ref Use Iface
DDD.DDD.DDD.DDD 0.0.0.0 255.255.255.255 UH 0 0 0 ipsec0
DDD.DDD.DDD.DDD 0.0.0.0 255.255.255.255 UH 0 0 0 ppp0
192.168.4.0 0.0.0.0 255.255.255.0 U 0 0 0 eth2
192.168.3.0 0.0.0.0 255.255.255.0 U 0 0 0 eth0
192.168.0.0 DDD.DDD.DDD.DDD 255.255.255.0 UG 0 0 0 ipsec0
169.254.0.0 0.0.0.0 255.255.0.0 U 0 0 0 eth2
127.0.0.0 0.0.0.0 255.0.0.0 U 0 0 0 lo
0.0.0.0 DDD.DDD.DDD.DDD 0.0.0.0 UG 0 0 0 ipsec0

という風になってしまいます。不思議と
shokuba.dyndns.co.jpやjitaku.dyndns.comではこのような障害は生じません。
一体何が原因なのでしょうか?


Jun 14 05:32:45 daigaku kernel: NET: 1 messages suppressed.
Jun 14 05:32:45 daigaku kernel: klips_error:ipsec_xmit_send: ip_send() failed, err=-1
Jun 14 05:32:49 daigaku kernel: NET: 1 messages suppressed.
Jun 14 05:32:49 daigaku kernel: klips_error:ipsec_xmit_send: ip_send() failed, err=-1
Jun 14 05:32:53 daigaku kernel: NET: 1 messages suppressed.
Jun 14 05:32:53 daigaku kernel: klips_error:ipsec_xmit_send: ip_send() failed, err=-1
Jun 14 05:32:54 daigaku kernel: application bug: perl(12723) has SIGCHLD set to SIG_IGN but calls wait().
Jun 14 05:32:54 daigaku kernel: (see the NOTES section of 'man 2 wait'). Workaround activated.
Jun 14 05:33:00 daigaku kernel: NET: 2 messages suppressed.
Jun 14 05:33:00 daigaku kernel: klips_error:ipsec_xmit_send: ip_send() failed, err=-1
Jun 14 05:33:04 daigaku kernel: NET: 1 messages suppressed.
Jun 14 05:33:04 daigaku kernel: klips_error:ipsec_xmit_send: ip_send() failed, err=-1
Jun 14 05:33:09 daigaku kernel: NET: 1 messages suppressed.
Jun 14 05:33:09 daigaku kernel: klips_error:ipsec_xmit_send: ip_send() failed, err=-1
Jun 14 05:33:15 daigaku kernel: NET: 2 messages suppressed.
Jun 14 05:33:15 daigaku kernel: klips_error:ipsec_xmit_send: ip_send() failed, err=-1
Jun 14 05:33:20 daigaku kernel: NET: 1 messages suppressed.
Jun 14 05:33:20 daigaku kernel: klips_error:ipsec_xmit_send: ip_send() failed, err=-1
Jun 14 05:33:24 daigaku kernel: NET: 1 messages suppressed.
Jun 14 05:33:24 daigaku kernel: klips_error:ipsec_xmit_send: ip_send() failed, err=-1
Jun 14 05:33:30 daigaku kernel: NET: 1 messages suppressed.
Jun 14 05:33:30 daigaku kernel: klips_error:ipsec_xmit_send: ip_send() failed, err=-1
Jun 14 05:33:34 daigaku kernel: NET: 1 messages suppressed.
Jun 14 05:33:34 daigaku kernel: klips_error:ipsec_xmit_send: ip_send() failed, err=-1
Jun 14 05:33:39 daigaku kernel: NET: 1 messages suppressed.
Jun 14 05:33:39 daigaku kernel: klips_error:ipsec_xmit_send: ip_send() failed, err=-1
Jun 14 05:33:43 daigaku kernel: NET: 1 messages suppressed.
Jun 14 05:33:43 daigaku kernel: klips_error:ipsec_xmit_send: ip_send() failed, err=-1
Jun 14 05:33:50 daigaku kernel: NET: 2 messages suppressed.
Jun 14 05:33:50 daigaku kernel: klips_error:ipsec_xmit_send: ip_send() failed, err=-1
Jun 14 05:33:54 daigaku kernel: NET: 1 messages suppressed.
Jun 14 05:33:54 daigaku kernel: klips_error:ipsec_xmit_send: ip_send() failed, err=-1
Jun 14 05:33:55 daigaku kernel: application bug: perl(12723) has SIGCHLD set to SIG_IGN but calls wait().
Jun 14 05:33:55 daigaku kernel: (see the NOTES section of 'man 2 wait'). Workaround activated.
Jun 14 05:33:59 daigaku kernel: NET: 1 messages suppressed.
Jun 14 05:33:59 daigaku kernel: klips_error:ipsec_xmit_send: ip_send() failed, err=-1
Jun 14 05:34:05 daigaku kernel: NET: 2 messages suppressed.
Jun 14 05:34:05 daigaku kernel: klips_error:ipsec_xmit_send: ip_send() failed, err=-1
Jun 14 07:07:11 daigaku /etc/hotplug/net.agent: NET unregister event not supported
Jun 14 07:07:11 daigaku adsl-connect: ADSL connection lost; attempting re-connection.
Jun 14 07:07:16 daigaku pppd[1031]: pppd 2.4.1 started by root, uid 0
Jun 14 07:07:16 daigaku pppd[1031]: Using interface ppp0
Jun 14 07:07:16 daigaku pppd[1031]: Connect: ppp0 <--> /dev/pts/0
Jun 14 07:07:16 daigaku /etc/hotplug/net.agent: assuming ppp0 is already up
Jun 14 07:07:16 daigaku pppoe[1032]: PPP session is 7357
Jun 14 07:07:17 daigaku pppd[1031]: local IP address ddd.ddd.ddd.ddd
Jun 14 07:07:17 daigaku pppd[1031]: remote IP address DDD.DDD.DDD.DDD
Jun 14 07:08:18 daigaku ddclient[3113]: WARNING: cannot connect to members.dyndns.org:80 socket: IO::Socket::INET: Bad hostname 'members.dyndns.org'
Jun 14 07:08:18 daigaku ddclient[3113]: FAILED: updating daigaku.dyndns.net: Could not connect to members.dyndns.org.
Jun 14 07:08:18 daigaku kernel: application bug: perl(12723) has SIGCHLD set to SIG_IGN but calls wait().
Jun 14 07:08:18 daigaku kernel: (see the NOTES section of 'man 2 wait'). Workaround activated.
Jun 14 07:13:05 daigaku ipsec_setup: Stopping FreeS/WAN IPsec...
Jun 14 07:13:06 daigaku kernel: IPSEC EVENT: KLIPS device ipsec0 shut down.
Jun 14 07:13:06 daigaku ipsec_setup: /usr/local/libexec/ipsec/tncfg: Socket ioctl failed on detach -- No such device. Is the virtual device valid? The ipsec module may not be linked into the kernel or loaded as a module.
Jun 14 07:13:06 daigaku kernel:
Jun 14 07:13:06 daigaku kernel:
Jun 14 07:13:06 daigaku kernel: klips_info:pfkey_cleanup: shutting down PF_KEY domain sockets.
Jun 14 07:13:06 daigaku kernel: klips_info:cleanup_module: ipsec module unloaded.
Jun 14 07:13:06 daigaku ipsec_setup: ...FreeS/WAN IPsec stopped
Jun 14 07:13:06 daigaku /etc/hotplug/net.agent: NET unregister event not supported
Jun 14 07:13:07 daigaku last message repeated 3 times
Jun 14 07:13:08 daigaku ipsec_setup: Starting FreeS/WAN IPsec 2.05...
Jun 14 07:13:08 daigaku kernel: application bug: perl(12723) has SIGCHLD set to SIG_IGN but calls wait().
Jun 14 07:13:08 daigaku kernel: (see the NOTES section of 'man 2 wait'). Workaround activated.
Jun 14 07:13:08 daigaku kernel: klips_info:ipsec_init: KLIPS startup, FreeS/WAN IPSec version: 2.05
Jun 14 07:13:08 daigaku ipsec_setup: Using /lib/modules/2.4.20-8/kernel/net/ipsec/ipsec.o
Jun 14 07:13:08 daigaku /etc/hotplug/net.agent: invoke ifup ipsec2
Jun 14 07:13:08 daigaku /etc/hotplug/net.agent: invoke ifup ipsec1
Jun 14 07:13:08 daigaku ipsec_setup: KLIPS debug `none'
Jun 14 07:13:08 daigaku /etc/hotplug/net.agent: invoke ifup ipsec3
Jun 14 07:13:08 daigaku /etc/hotplug/net.agent: invoke ifup ipsec0
Jun 14 07:13:08 daigaku ipsec_setup: KLIPS ipsec0 on ppp0 ddd.ddd.ddd.ddd/255.255.255.255 pointopoint DDD.DDD.DDD.DDD
Jun 14 07:13:08 daigaku kernel:
Jun 14 07:13:08 daigaku ipsec_setup: WARNING: changing route filtering on ppp0 (changing /proc/sys/net/ipv4/conf/ppp0/rp_filter from 1 to 0)
Jun 14 07:13:09 daigaku ipsec_setup: ...FreeS/WAN IPsec started
Jun 14 07:13:09 daigaku ipsec_setup: Stopping FreeS/WAN IPsec...
Jun 14 07:13:09 daigaku ipsec__plutorun: whack: Pluto is not running (no "/var/run/pluto.ctl")
Jun 14 07:13:09 daigaku ipsec__plutorun: ...could not add conn "jitaku-to-daigaku"
Jun 14 07:13:09 daigaku ipsec__plutorun: whack: Pluto is not running (no "/var/run/pluto.ctl")
Jun 14 07:13:10 daigaku kernel: IPSEC EVENT: KLIPS device ipsec0 shut down.
Jun 14 07:13:10 daigaku kernel:
Jun 14 07:13:11 daigaku /etc/hotplug/net.agent: NET unregister event not supported
Jun 14 07:13:11 daigaku /etc/hotplug/net.agent: NET unregister event not supported
Jun 14 07:13:11 daigaku kernel:
Jun 14 07:13:11 daigaku kernel: klips_info:pfkey_cleanup: shutting down PF_KEY domain sockets.
Jun 14 07:13:11 daigaku kernel: klips_info:cleanup_module: ipsec module unloaded.
Jun 14 07:13:11 daigaku ipsec_setup: ...FreeS/WAN IPsec stopped
Jun 14 07:13:11 daigaku /etc/hotplug/net.agent: NET unregister event not supported
Jun 14 07:13:11 daigaku /etc/hotplug/net.agent: NET unregister event not supported
Jun 14 07:13:12 daigaku ipsec_setup: Starting FreeS/WAN IPsec 2.05...
Jun 14 07:13:12 daigaku kernel: klips_info:ipsec_init: KLIPS startup, FreeS/WAN IPSec version: 2.05
Jun 14 07:13:12 daigaku ipsec_setup: Using /lib/modules/2.4.20-8/kernel/net/ipsec/ipsec.o
Jun 14 07:13:12 daigaku /etc/hotplug/net.agent: invoke ifup ipsec2
Jun 14 07:13:12 daigaku /etc/hotplug/net.agent: invoke ifup ipsec1
Jun 14 07:13:12 daigaku /etc/hotplug/net.agent: invoke ifup ipsec0
Jun 14 07:13:12 daigaku ipsec_setup: KLIPS debug `none'
Jun 14 07:13:12 daigaku /etc/hotplug/net.agent: invoke ifup ipsec3
Jun 14 07:13:13 daigaku kernel:
Jun 14 07:13:13 daigaku ipsec_setup: KLIPS ipsec0 on ppp0 ddd.ddd.ddd.ddd/255.255.255.255 pointopoint DDD.DDD.DDD.DDD
Jun 14 07:13:13 daigaku ipsec_setup: ...FreeS/WAN IPsec started
Jun 14 07:13:18 daigaku ddclient[3113]: WARNING: cannot connect to members.dyndns.org:80 socket: IO::Socket::INET: Bad hostname 'members.dyndns.org'
Jun 14 07:13:18 daigaku ddclient[3113]: FAILED: updating daigaku.dyndns.net: Could not connect to members.dyndns.org.
Jun 14 07:14:51 daigaku ntpd[3096]: sendto(133.100.11.8): Invalid argument
Jun 14 07:14:52 daigaku kernel: application bug: perl(12723) has SIGCHLD set to SIG_IGN but calls wait().
Jun 14 07:14:52 daigaku kernel: (see the NOTES section of 'man 2 wait'). Workaround activated.
Jun 14 07:14:54 daigaku ntpd[3096]: sendto(130.69.251.23): Invalid argument
Jun 14 07:15:57 daigaku ntpd[3096]: sendto(133.100.9.2): Invalid argument
Jun 14 07:15:58 daigaku kernel: application bug: perl(12723) has SIGCHLD set to SIG_IGN but calls wait().
Jun 14 07:15:58 daigaku kernel: (see the NOTES section of 'man 2 wait'). Workaround activated.
Jun 14 07:18:18 daigaku ddclient[3113]: WARNING: skipping update of daigaku.dyndns.net from eee.eee.eee.eee to ddd.ddd.ddd.ddd.
Jun 14 07:18:18 daigaku ddclient[3113]: WARNING: last updated Sun Jun 13 22:02:49 2004 but last attempt on Mon Jun 14 07:13:18 2004 failed.
Jun 14 07:18:18 daigaku ddclient[3113]: WARNING: Wait at least 5 minutes between update attempts.
Jun 14 07:18:19 daigaku kernel: application bug: perl(12723) has SIGCHLD set to SIG_IGN but calls wait().
Jun 14 07:18:19 daigaku kernel: (see the NOTES section of 'man 2 wait'). Workaround activated.
Jun 14 07:18:37 daigaku pppd[1031]: No response to 3 echo-requests
Jun 14 07:18:37 daigaku pppd[1031]: Serial link appears to be disconnected.
Jun 14 07:18:37 daigaku pppd[1031]: Connection terminated.
Jun 14 07:18:37 daigaku pppd[1031]: Connect time 11.4 minutes.
Jun 14 07:18:37 daigaku pppd[1031]: Sent 30 bytes, received 942 bytes.
Jun 14 07:18:37 daigaku pppoe[1032]: read (asyncReadFromPPP): Session 7357: Input/output error
Jun 14 07:18:37 daigaku pppoe[1032]: Sent PADT
Jun 14 07:18:37 daigaku /etc/hotplug/net.agent: NET unregister event not supported
Jun 14 07:18:37 daigaku pppd[1031]: Exit.
Jun 14 07:18:37 daigaku adsl-connect: ADSL connection lost; attempting re-connection.
Jun 14 07:18:42 daigaku pppd[3498]: pppd 2.4.1 started by root, uid 0
Jun 14 07:18:42 daigaku pppd[3498]: Using interface ppp0
Jun 14 07:18:42 daigaku pppd[3498]: Connect: ppp0 <--> /dev/pts/0
Jun 14 07:18:42 daigaku /etc/hotplug/net.agent: assuming ppp0 is already up
Jun 14 07:18:42 daigaku pppoe[3499]: PPP session is 7768
Jun 14 07:18:43 daigaku pppd[3498]: local IP address ddd.ddd.ddd.ddd
Jun 14 07:18:43 daigaku pppd[3498]: remote IP address DDD.DDD.DDD.DDD
Jun 14 07:23:05 daigaku ipsec_setup: Stopping FreeS/WAN IPsec...
Jun 14 07:23:06 daigaku kernel: IPSEC EVENT: KLIPS device ipsec0 shut down.
Jun 14 07:23:06 daigaku ipsec_setup: /usr/local/libexec/ipsec/tncfg: Socket ioctl failed on detach -- No such device. Is the virtual device valid? The ipsec module may not be linked into the kernel or loaded as a module.
Jun 14 07:23:06 daigaku kernel:
Jun 14 07:23:06 daigaku kernel:
Jun 14 07:23:06 daigaku kernel: klips_info:pfkey_cleanup: shutting down PF_KEY domain sockets.
Jun 14 07:23:06 daigaku kernel: klips_info:cleanup_module: ipsec module unloaded.
Jun 14 07:23:06 daigaku ipsec_setup: ...FreeS/WAN IPsec stopped
Jun 14 07:23:07 daigaku /etc/hotplug/net.agent: NET unregister event not supported
Jun 14 07:23:07 daigaku last message repeated 3 times
Jun 14 07:23:08 daigaku kernel: application bug: perl(12723) has SIGCHLD set to SIG_IGN but calls wait().
Jun 14 07:23:08 daigaku kernel: (see the NOTES section of 'man 2 wait'). Workaround activated.
Jun 14 07:23:08 daigaku ipsec_setup: Starting FreeS/WAN IPsec 2.05...
Jun 14 07:23:08 daigaku kernel: klips_info:ipsec_init: KLIPS startup, FreeS/WAN IPSec version: 2.05
Jun 14 07:23:08 daigaku /etc/hotplug/net.agent: invoke ifup ipsec0
Jun 14 07:23:08 daigaku /etc/hotplug/net.agent: invoke ifup ipsec3
Jun 14 07:23:08 daigaku /etc/hotplug/net.agent: invoke ifup ipsec1
Jun 14 07:23:08 daigaku /etc/hotplug/net.agent: invoke ifup ipsec2
Jun 14 07:23:08 daigaku ipsec_setup: Using /lib/modules/2.4.20-8/kernel/net/ipsec/ipsec.o
Jun 14 07:23:08 daigaku ipsec_setup: KLIPS debug `none'
Jun 14 07:23:09 daigaku ipsec_setup: KLIPS ipsec0 on ppp0 ddd.ddd.ddd.ddd/255.255.255.255 pointopoint DDD.DDD.DDD.DDD
Jun 14 07:23:09 daigaku kernel:
Jun 14 07:23:09 daigaku ipsec_setup: WARNING: changing route filtering on ppp0 (changing /proc/sys/net/ipv4/conf/ppp0/rp_filter from 1 to 0)
Jun 14 07:23:09 daigaku ipsec_setup: ...FreeS/WAN IPsec started
Jun 14 07:23:10 daigaku ipsec_setup: Stopping FreeS/WAN IPsec...
Jun 14 07:23:10 daigaku ipsec__plutorun: whack: Pluto is not running (no "/var/run/pluto.ctl")
Jun 14 07:23:11 daigaku kernel: IPSEC EVENT: KLIPS device ipsec0 shut down.
Jun 14 07:23:11 daigaku kernel:
Jun 14 07:23:11 daigaku /etc/hotplug/net.agent: NET unregister event not supported
Jun 14 07:23:11 daigaku kernel:
Jun 14 07:23:11 daigaku kernel: klips_info:pfkey_cleanup: shutting down PF_KEY domain sockets.
Jun 14 07:23:11 daigaku kernel: klips_info:cleanup_module: ipsec module unloaded.
Jun 14 07:23:11 daigaku /etc/hotplug/net.agent: NET unregister event not supported
Jun 14 07:23:11 daigaku last message repeated 2 times
Jun 14 07:23:11 daigaku ipsec_setup: ...FreeS/WAN IPsec stopped
Jun 14 07:23:12 daigaku ipsec_setup: Starting FreeS/WAN IPsec 2.05...
Jun 14 07:23:12 daigaku kernel: klips_info:ipsec_init: KLIPS startup, FreeS/WAN IPSec version: 2.05
Jun 14 07:23:12 daigaku ipsec_setup: Using /lib/modules/2.4.20-8/kernel/net/ipsec/ipsec.o
Jun 14 07:23:12 daigaku /etc/hotplug/net.agent: invoke ifup ipsec3
Jun 14 07:23:13 daigaku /etc/hotplug/net.agent: invoke ifup ipsec2
Jun 14 07:23:13 daigaku /etc/hotplug/net.agent: invoke ifup ipsec0
Jun 14 07:23:13 daigaku /etc/hotplug/net.agent: invoke ifup ipsec1
Jun 14 07:23:13 daigaku ipsec_setup: KLIPS debug `none'
Jun 14 07:23:13 daigaku kernel:
Jun 14 07:23:13 daigaku ipsec_setup: KLIPS ipsec0 on ppp0 ddd.ddd.ddd.ddd/255.255.255.255 pointopoint DDD.DDD.DDD.DDD
Jun 14 07:23:13 daigaku ipsec_setup: ...FreeS/WAN IPsec started
Jun 14 07:23:18 daigaku ddclient[3113]: WARNING: cannot connect to members.dyndns.org:80 socket: IO::Socket::INET: Bad hostname 'members.dyndns.org'
Jun 14 07:23:18 daigaku ddclient[3113]: FAILED: updating daigaku.dyndns.net: Could not connect to members.dyndns.org.


|目次|掲示板|過去ログ目次|▲頁先頭|