Clayton Cramer's Blog Archive (pre-Ambulance Chasers): Calling All VPN Experts

Calling All VPN Experts

I use a VPN connection to telecommute. A couple of days ago, my wireless internet provider switched me from one radio to another. I didn't bother to get all the details; I just know that the IP address of the WAN side of my router had to change.

Ever since, my VPN connection has become very frustrating. It used to be that I would lose the connection perhaps once or twice a day--and it usually reconnected pretty quickly. Now it is dropping the connection like clockwork--in fact, every four minutes. (The regularity of it alone is curious.) It eventually comes back, but since it typically takes 20-30 seconds to do so--and it happens every four minutes--this is a major frustration.

With VPN disabled, everything works just fine--no problems.

I have whined to my wireless internet provider--and reminded them that they aren't the only game in town. (Even out here.) But I would prefer not to go through the aggravation of switching right now if I can avoid it. I have VPN client logs, if there is anyone out there who is sufficiently knowledgeable to tell me what these interesting complaints mean.

My guess is that the failure of these ISAKMP message (which provide authentication and security keys) is related to corruption or loss of packets--but I would think that the contents of these packets would be passed right through TCP/IP. They should just be data inside the data packets.

2009/03/20 15:20:13:593 Information 216.228.186.4 Starting aggressive mode phase 1 exchange.
2009/03/20 15:20:13:593 Information 216.228.186.4 Ignoring unsupported vendor ID -1.
2009/03/20 15:20:13:593 Information 216.228.186.4 NAT Detected: Local host is behind a NAT device.
2009/03/20 15:20:13:593 Information 216.228.186.4 The SA lifetime for phase 1 is 28800 seconds.
2009/03/20 15:20:13:593 Information 216.228.186.4 ISAKMP SEND: EXCH=OAK AG, ICOOK=0x7F929B126DA22A86, RCOOK=0x72D53A4C55B602BD, MSGID=0x00000000, SIZE=124
2009/03/20 15:20:13:593 Information 216.228.186.4 Phase 1 has completed.
2009/03/20 15:20:13:718 Information 216.228.186.4 ISAKMP RECV: EXCH=MODE CFG, ICOOK=0x7F929B126DA22A86, RCOOK=0x72D53A4C55B602BD, MSGID=0x82C0FFA4, SIZE=76
2009/03/20 15:20:13:718 Information 216.228.186.4 Received XAuth request.
2009/03/20 15:20:13:718 Information 216.228.186.4 Sending XAuth reply.
2009/03/20 15:20:13:718 Information 216.228.186.4 ISAKMP SEND: EXCH=MODE CFG, ICOOK=0x7F929B126DA22A86, RCOOK=0x72D53A4C55B602BD, MSGID=0x82C0FFA4, SIZE=92
2009/03/20 15:20:13:859 Information 216.228.186.4 ISAKMP RECV: EXCH=MODE CFG, ICOOK=0x7F929B126DA22A86, RCOOK=0x72D53A4C55B602BD, MSGID=0xFB04F23A, SIZE=68
2009/03/20 15:20:13:859 Information 216.228.186.4 Received XAuth status.
2009/03/20 15:20:13:859 Information 216.228.186.4 Sending XAuth acknowledgement.
2009/03/20 15:20:13:859 Information 216.228.186.4 ISAKMP SEND: EXCH=MODE CFG, ICOOK=0x7F929B126DA22A86, RCOOK=0x72D53A4C55B602BD, MSGID=0xFB04F23A, SIZE=68
2009/03/20 15:20:13:859 Information 216.228.186.4 User authentication has succeeded.
2009/03/20 15:20:14:000 Information 216.228.186.4 ISAKMP RECV: EXCH=MODE CFG, ICOOK=0x7F929B126DA22A86, RCOOK=0x72D53A4C55B602BD, MSGID=0xDA1CD1F7, SIZE=92
2009/03/20 15:20:14:000 Information 216.228.186.4 Received request for policy version.
2009/03/20 15:20:14:000 Information 216.228.186.4 Sending policy version reply.
2009/03/20 15:20:14:000 Information 216.228.186.4 ISAKMP SEND: EXCH=MODE CFG, ICOOK=0x7F929B126DA22A86, RCOOK=0x72D53A4C55B602BD, MSGID=0xDA1CD1F7, SIZE=116
2009/03/20 15:20:14:140 Information 216.228.186.4 ISAKMP RECV: EXCH=MODE CFG, ICOOK=0x7F929B126DA22A86, RCOOK=0x72D53A4C55B602BD, MSGID=0xDA1CD1F7, SIZE=68
2009/03/20 15:20:14:156 Information 216.228.186.4 Received policy change is not required.
2009/03/20 15:20:14:156 Information 216.228.186.4 Sending policy acknowledgement.
2009/03/20 15:20:14:156 Information 216.228.186.4 ISAKMP SEND: EXCH=MODE CFG, ICOOK=0x7F929B126DA22A86, RCOOK=0x72D53A4C55B602BD, MSGID=0xDA1CD1F7, SIZE=76
2009/03/20 15:20:14:156 Information 216.228.186.4 The configuration for the connection is up to date.
2009/03/20 15:20:14:187 Information 216.228.186.4 Starting ISAKMP phase 2 negotiation with 0.0.0.0/0.0.0.0:BOOTPC:BOOTPS:UDP.
2009/03/20 15:20:14:187 Information 216.228.186.4 ISAKMP SEND: EXCH=OAK QM, ICOOK=0x7F929B126DA22A86, RCOOK=0x72D53A4C55B602BD, MSGID=0xE6511F9E, SIZE=164
2009/03/20 15:20:14:187 Information 216.228.186.4 Starting quick mode phase 2 exchange.
2009/03/20 15:20:14:312 Information 216.228.186.4 ISAKMP RECV: EXCH=OAK QM, ICOOK=0x7F929B126DA22A86, RCOOK=0x72D53A4C55B602BD, MSGID=0xE6511F9E, SIZE=164
2009/03/20 15:20:14:312 Information 216.228.186.4 The SA lifetime for phase 2 is 28800 seconds.
2009/03/20 15:20:14:312 Information 216.228.186.4 ISAKMP SEND: EXCH=OAK QM, ICOOK=0x7F929B126DA22A86, RCOOK=0x72D53A4C55B602BD, MSGID=0xE6511F9E, SIZE=84
2009/03/20 15:20:14:312 Information 216.228.186.4 Phase 2 with 0.0.0.0/0.0.0.0:BOOTPC:BOOTPS:UDP has completed.
2009/03/20 15:20:14:312 Information Renewing IP address for the virtual interface (00-60-73-E4-74-3E).
2009/03/20 15:20:19:406 Information The IP address for the virtual interface has changed to 192.168.1.224.
2009/03/20 15:20:19:453 Information The system ARP cache has been flushed.
2009/03/20 15:20:19:453 Information 216.228.186.4 NetWkstaUserGetInfo returned: user: Clayton Cramer, logon domain: CLAYTONLAPTOP, logon server: CLAYTONLAPTOP
2009/03/20 15:20:23:656 Information 216.228.186.4 ISAKMP SEND: NAT KEEP ALIVE
2009/03/20 15:20:23:953 Information 216.228.186.4 NetGetDCName failed: Could not find domain controller for this domain.
2009/03/20 15:20:23:953 Information 216.228.186.4 calling NetUserGetInfo: Server: \\CLAYTONLAPTOP, User: Clayton Cramer, level: 3
2009/03/20 15:20:23:968 Information 216.228.186.4 NetUserGetInfo returned: home dir: , remote dir: , logon script:
2009/03/20 15:20:28:656 Information 216.228.186.4 ISAKMP SEND: EXCH=ISA INFO, ICOOK=0x7F929B126DA22A86, RCOOK=0x72D53A4C55B602BD, MSGID=0x65F05CFC, SIZE=84
2009/03/20 15:20:28:656 Information 216.228.186.4 Sending dead peer detection request.
2009/03/20 15:20:28:812 Information 216.228.186.4 ISAKMP RECV: EXCH=ISA INFO, ICOOK=0x7F929B126DA22A86, RCOOK=0x72D53A4C55B602BD, MSGID=0x11E9BC14, SIZE=84
2009/03/20 15:20:28:812 Information 216.228.186.4 Received dead peer detection acknowledgement.
2009/03/20 15:20:33:656 Information 216.228.186.4 ISAKMP SEND: NAT KEEP ALIVE
2009/03/20 15:20:43:671 Information 216.228.186.4 ISAKMP SEND: NAT KEEP ALIVE
2009/03/20 15:20:53:906 Information 216.228.186.4 ISAKMP SEND: NAT KEEP ALIVE
2009/03/20 15:21:03:906 Information 216.228.186.4 ISAKMP SEND: NAT KEEP ALIVE
2009/03/20 15:21:13:906 Information 216.228.186.4 ISAKMP SEND: NAT KEEP ALIVE
2009/03/20 15:21:23:906 Information 216.228.186.4 ISAKMP SEND: NAT KEEP ALIVE
2009/03/20 15:21:33:906 Information 216.228.186.4 ISAKMP SEND: NAT KEEP ALIVE
2009/03/20 15:21:43:906 Information 216.228.186.4 ISAKMP SEND: NAT KEEP ALIVE
2009/03/20 15:21:53:906 Information 216.228.186.4 ISAKMP SEND: NAT KEEP ALIVE
2009/03/20 15:22:03:906 Information 216.228.186.4 ISAKMP SEND: NAT KEEP ALIVE
2009/03/20 15:22:13:906 Information 216.228.186.4 ISAKMP SEND: NAT KEEP ALIVE
2009/03/20 15:22:23:906 Information 216.228.186.4 ISAKMP SEND: NAT KEEP ALIVE
2009/03/20 15:22:33:906 Information 216.228.186.4 ISAKMP SEND: NAT KEEP ALIVE
2009/03/20 15:22:43:906 Information 216.228.186.4 ISAKMP SEND: NAT KEEP ALIVE
2009/03/20 15:22:53:906 Information 216.228.186.4 ISAKMP SEND: NAT KEEP ALIVE
2009/03/20 15:23:03:906 Information 216.228.186.4 ISAKMP SEND: NAT KEEP ALIVE
2009/03/20 15:23:13:906 Information 216.228.186.4 ISAKMP SEND: NAT KEEP ALIVE
2009/03/20 15:23:23:906 Information 216.228.186.4 ISAKMP SEND: NAT KEEP ALIVE
2009/03/20 15:23:33:906 Information 216.228.186.4 ISAKMP SEND: NAT KEEP ALIVE
2009/03/20 15:23:43:906 Information 216.228.186.4 ISAKMP SEND: NAT KEEP ALIVE
2009/03/20 15:23:48:906 Information 216.228.186.4 ISAKMP SEND: EXCH=ISA INFO, ICOOK=0x7F929B126DA22A86, RCOOK=0x72D53A4C55B602BD, MSGID=0x721706CD, SIZE=84
2009/03/20 15:23:48:906 Information 216.228.186.4 Sending dead peer detection request.
2009/03/20 15:23:53:906 Information 216.228.186.4 ISAKMP SEND: NAT KEEP ALIVE
2009/03/20 15:23:53:906 Information 216.228.186.4 ISAKMP SEND: EXCH=ISA INFO, ICOOK=0x7F929B126DA22A86, RCOOK=0x72D53A4C55B602BD, MSGID=0x547EAFA9, SIZE=84
2009/03/20 15:23:53:906 Information 216.228.186.4 Sending dead peer detection request.
2009/03/20 15:23:54:046 Information 216.228.186.4 ISAKMP RECV: EXCH=ISA INFO, ICOOK=0x7F929B126DA22A86, RCOOK=0x72D53A4C55B602BD, MSGID=0x7BB66179, SIZE=168
2009/03/20 15:23:54:046 Warning 216.228.186.4 Received an unencrypted packet but encryption keys have already been established.
2009/03/20 15:23:54:046 Error 216.228.186.4 Failed to decrypt buffer.
2009/03/20 15:23:54:046 Information An incoming ISAKMP packet from 216.228.186.4 was ignored.
2009/03/20 15:23:59:031 Information 216.228.186.4 ISAKMP SEND: EXCH=ISA INFO, ICOOK=0x7F929B126DA22A86, RCOOK=0x72D53A4C55B602BD, MSGID=0x59A2626D, SIZE=84
2009/03/20 15:23:59:031 Information 216.228.186.4 Sending dead peer detection request.
2009/03/20 15:23:59:171 Information 216.228.186.4 ISAKMP RECV: EXCH=ISA INFO, ICOOK=0x7F929B126DA22A86, RCOOK=0x72D53A4C55B602BD, MSGID=0x5E8DD5D5, SIZE=168
2009/03/20 15:23:59:171 Warning 216.228.186.4 Received an unencrypted packet but encryption keys have already been established.
2009/03/20 15:23:59:171 Error 216.228.186.4 Failed to decrypt buffer.
2009/03/20 15:23:59:171 Information An incoming ISAKMP packet from 216.228.186.4 was ignored.
2009/03/20 15:24:04:031 Information 216.228.186.4 ISAKMP SEND: NAT KEEP ALIVE
2009/03/20 15:24:04:031 Information 216.228.186.4 ISAKMP SEND: EXCH=ISA INFO, ICOOK=0x7F929B126DA22A86, RCOOK=0x72D53A4C55B602BD, MSGID=0x1E017212, SIZE=84
2009/03/20 15:24:04:031 Information 216.228.186.4 Sending dead peer detection request.
2009/03/20 15:24:04:156 Information 216.228.186.4 ISAKMP RECV: EXCH=ISA INFO, ICOOK=0x7F929B126DA22A86, RCOOK=0x72D53A4C55B602BD, MSGID=0x1B94935E, SIZE=168
2009/03/20 15:24:04:156 Warning 216.228.186.4 Received an unencrypted packet but encryption keys have already been established.
2009/03/20 15:24:04:156 Error 216.228.186.4 Failed to decrypt buffer.
2009/03/20 15:24:04:156 Information An incoming ISAKMP packet from 216.228.186.4 was ignored.
2009/03/20 15:24:09:031 Information 216.228.186.4 ISAKMP SEND: EXCH=ISA INFO, ICOOK=0x7F929B126DA22A86, RCOOK=0x72D53A4C55B602BD, MSGID=0x340D45A3, SIZE=84
2009/03/20 15:24:09:031 Information 216.228.186.4 Sending dead peer detection request.
2009/03/20 15:24:09:156 Information 216.228.186.4 ISAKMP RECV: EXCH=ISA INFO, ICOOK=0x7F929B126DA22A86, RCOOK=0x72D53A4C55B602BD, MSGID=0x63C6BC53, SIZE=168
2009/03/20 15:24:09:156 Warning 216.228.186.4 Received an unencrypted packet but encryption keys have already been established.
2009/03/20 15:24:09:156 Error 216.228.186.4 Failed to decrypt buffer.
2009/03/20 15:24:09:156 Information An incoming ISAKMP packet from 216.228.186.4 was ignored.
2009/03/20 15:24:13:531 Information 216.228.186.4 ISAKMP SEND: NAT KEEP ALIVE
2009/03/20 15:24:14:031 Information 216.228.186.4 ISAKMP SEND: NAT KEEP ALIVE
2009/03/20 15:24:14:031 Information Releasing IP address for the virtual interface (00-60-73-E4-74-3E).

Clayton Cramer's Blog Archive (pre-Ambulance Chasers)

Friday, March 20, 2009

Calling All VPN Experts

No comments:

Post a Comment