Hi,

We use BM3.8 and VPNC 3.8.4.
There are several rules defined for accessing internal Win and Novell
servers and it works fine.
The rule means it allows all IP protocols, from a specific user, encrypted,
to the specific target IP.

Now, I try to access a Linux system with an identical rule and after the
ping the whole connection drops!!

Where I can find more trace date to find the cause?
What does it mean, 'VPN Control Client user.context removed from IPSEC' ??
Does anybody have experienced similar problems?

This is what the BM Audit log shows:
06/28/2004 05:21:46 PM IPSec (ESP) Inbound SA is not found,
SPI=65C06033, src=<ext.IP>, dst=<extGatewayIP> seq=93
06/28/2004 05:21:46 PM IKE ESP-SA is deleted mySPI=1351F432
peerSPI=5CB1EB6D dst :<ext.IP>
06/28/2004 05:21:46 PM IKE ESP-SA is deleted mySPI=891482A7
peerSPI=469AC65A dst :<ext.IP>
06/28/2004 05:21:46 PM IKE ESP-SA is deleted mySPI=3360C065
peerSPI=B57F8AB8 dst :<ext.IP>
06/28/2004 05:21:46 PM VPN Control Client user.context removed from
IPSEC.
06/28/2004 05:21:40 PM IKE Sending proxy id: Type 1 192.168.48.11
06/28/2004 05:21:40 PM IKE Sending proxy id :Type 7
192.168.10.125/192.168.10.125
06/28/2004 05:21:24 PM IKE Sending proxy id: Type 1 192.168.48.11
06/28/2004 05:21:24 PM IKE Sending proxy id :Type 7
192.168.10.125/192.168.10.125
06/28/2004 05:21:08 PM IKE Sending proxy id: Type 1 192.168.48.11
06/28/2004 05:21:08 PM IKE Sending proxy id :Type 7
192.168.10.125/192.168.10.125
06/28/2004 05:19:24 PM IKE ESP SA was created successfully with
<ext.IP>
06/28/2004 05:19:22 PM IKE Sending proxy id: Type 1 <extGatewayIP>


Thanks a lot for a little help...
Lothar