I have a working ipsec (freeswan) connection from my house to the office but logcheck was wearing me out on both firewalls with all the rekeying messages. I added rules to ignore these but I think I am also ignoring entries that I want like when the connection is actually lost and has to restart. Has anyone worked with this enough to get a set of rules to only ignore the routine rekeying? I am going to wade into this in the next week or so I thought I would ask if someone had already invented this particular wheel. here are my ignore entries. on initiating dynamic ip adsl (house) Pluto.*: ISAKMP SA expired (superseded by Pluto.*: IPsec SA expired (superseded by Pluto.*: replacing stale ISAKMP SA Pluto.*: initiating Main Mode Pluto.*: STATE_MAIN_I4: ISAKMP SA established Pluto.*: STATE_QUICK_I2: sent QI2, IPsec SA established on office firewall: Pluto.*: STATE_MAIN_R3: sent MR3, ISAKMP SA established Pluto.*: not replacing stale ISAKMP SA: .* will do Pluto.*: ISAKMP SA expired (superseded by Pluto.*: responding to Main Mode from Road Warrior Pluto.*: IPsec SA expired (superseded by Thanks for any tips. Bret _______________________________________________ Redhat-list mailing list [EMAIL PROTECTED] https://listman.redhat.com/mailman/listinfo/redhat-list
