Zdravim, po upgradu na Centos 7.4 mam problem, ze pokus o restart sluzby ipsec (at uz 'ipsec restart' nebo 'systemctl restart ipsec') skonci odpojenim stroje od site. Watchdog ho po nejake dobe restartuje, takze asi po odpojeni od site bezi dal (taky se da normalne vypnout pomoci 'virsh shutdown...'). Stav selinuxu na to nema zadny vliv. V /etc/log/messages nic relevantniho nevidim. Pri nabehu stroje je tam tohle:
Sep 15 12:25:40 ipsec01nat ipsec: nflog ipsec capture disabled
Sep 15 12:25:40 ipsec01nat pluto: Sep 15 12:25:40: pluto: warning: chdir("/var/run/pluto/") to dumpdir failed (2: No such file or directory)
Sep 15 12:25:40 ipsec01nat pluto: pluto: warning: chdir("/var/run/pluto/") to dumpdir failed (2: No such file or directory)
Sep 15 12:25:40 ipsec01nat kernel: alg: No test for fips(ansi_cprng) (fips_ansi_cprng)
Sep 15 12:25:40 ipsec01nat systemd: Started Dynamic System Tuning Daemon.
Sep 15 12:25:40 ipsec01nat systemd: Started Internet Key Exchange (IKE) Protocol Daemon for IPsec.
Ale jednak tam ta slozka je (a stav selinuxu nema zadny vliv ani na tuto hlasku) a jednak je to hlaska po nabehu, kdy vsechno funguje (teprve po pokusu restartovat sluzbu ipsec se to podela)
Co s tim? Asi nekam nahlasit, ale nevim kam.
Dik
2 Odpovědí
1504 Zhlédnutí