Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email firstname.lastname@example.org
From: Christoph Egger (egger_at_mlcomputing.de)
Date: Wed Sep 11 2002 - 04:44:44 CDT
I am wondering how causes lots of traffic through an ipsec tunnel.
Only our mail server fetches mails every 10 minutes and that's it. So only
every 10 minutes is expected to be traffic there.
Nonetheless, tcpdump registered lots of traffic during the whole night.
First, I thought, there was an attack going through, but I couldn't find
Another possibility is that the two ipsec gateways do lots of keyexchanging.
On the one gateway, the key related options are these:
The other gateway is configured as roadwarrior because of dynamic ip
addresses (dialup connection). Keying related options are these:
I can't figure out what the disablearrivealcheck=no option really means as
all the documentation links of the freeswan homage (http://www.freeswan.org/)
This option was already in the config file as a sort of "pre-defined default
Can one of these options cause lots of traffic?
Are there other possibilities?
-- CU, Christoph
-- Check the headers for your unsubscription address For additional commands, e-mail: suse-security-helpsuse.com Security-related bug reports go to securitysuse.de, not here