diff options
| author | Hakan Olsson <ho@cvs.openbsd.org> | 2003-06-20 09:14:15 +0000 |
|---|---|---|
| committer | Hakan Olsson <ho@cvs.openbsd.org> | 2003-06-20 09:14:15 +0000 |
| commit | a20a41ec9d716554c8ef6f9fddf85ada84f59111 (patch) | |
| tree | a070240e6318627b413ba28fde054bd4277ecb4b | |
| parent | 07881a9c9946c91d6040bc5dd9d76ab85383232e (diff) | |
Be a bit more verbose when we give up on ever seeing a response to the
last message we sent out. In case we initiated the exchange, one possible
and common reason is a network level problem (pf, routing, whatnot), if
we're the responder, there is also the possibility we were scanned by
something like ike-scan. markus@ ok.
| -rw-r--r-- | sbin/isakmpd/transport.c | 19 |
1 files changed, 15 insertions, 4 deletions
diff --git a/sbin/isakmpd/transport.c b/sbin/isakmpd/transport.c index 95c8913d01c..347206e5349 100644 --- a/sbin/isakmpd/transport.c +++ b/sbin/isakmpd/transport.c @@ -1,4 +1,4 @@ -/* $OpenBSD: transport.c,v 1.21 2003/06/10 16:41:29 deraadt Exp $ */ +/* $OpenBSD: transport.c,v 1.22 2003/06/20 09:14:14 ho Exp $ */ /* $EOM: transport.c,v 1.43 2000/10/10 12:36:39 provos Exp $ */ /* @@ -294,9 +294,20 @@ transport_send_messages (fd_set *fds) if (msg->xmits > conf_get_num ("General", "retransmits", RETRANSMIT_DEFAULT)) { - log_print ("transport_send_messages: " - "giving up on message %p", - msg); + log_print ("transport_send_messages: giving up on " + "message %p", msg); + /* Be more verbose here. */ + if (exchange->phase == 1) + { + log_print ("transport_send_messages: either this " + "message did not reach the other peer"); + if (exchange->initiator) + log_print ("transport_send_messages: or the response" + "message did not reach us back"); + else + log_print ("transport_send_messages: or this is " + "an attempted IKE scan"); + } exchange->last_sent = 0; } else |