[Openswan Users] OT IPSec -- L2TPD/Xauth
Kit Peters
cpeters at ucmo.edu
Tue Oct 16 11:51:10 EDT 2012
For the record, I have IPsec and xl2tpd implemented on a Linux (Ubuntu)
firewall and have non-rooted Android clients. See http://goo.gl/by9zs for
details (ignore the Proxy ARP bits).
KP
On Tue, Oct 16, 2012 at 8:08 AM, Erich Titl <erich.titl at think.ch> wrote:
> Hi all
>
> at 16.10.2012 13:45, Willie Gillespie wrote:
> > On 10/16/2012 05:40 AM, Erich Titl wrote:
> >> Thanks, do you know a URL where this patch is located (not the htpm
> >> link :-(
> >
> >
> http://people.redhat.com/pwouters/osw/openswan-2.6.38-android-ics-natoa.patch
>
> Thanks a lot, applied it and now I am at the next hurdle
>
> Phase 2 IPSec is established correctly as can be seen at
>
> Oct 16 12:59:42 sentinel pluto[26463]: "mega-rw"[1] 195.141.2.242 #4:
> transition from state STATE_QUICK_R0 to state STATE_QUICK_R1
> Oct 16 12:59:42 sentinel pluto[26463]: "mega-rw"[1] 195.141.2.242 #4:
> STATE_QUICK_R1: sent QR1, inbound IPsec SA installed, expecting QI2
> Oct 16 12:59:42 sentinel pluto[26463]: "mega-rw"[1] 195.141.2.242 #4:
> transition from state STATE_QUICK_R1 to state STATE_QUICK_R2
> Oct 16 12:59:42 sentinel pluto[26463]: "mega-rw"[1] 195.141.2.242 #4:
> STATE_QUICK_R2: IPsec SA established tunnel mode {ESP=>0x02456c24
> <0xd9005e09 xfrm=AES_256-HMAC_SHA1 N
>
> sentinel# ipsec eroute
> 0 172.29.0.0/16 -> 192.168.1.119/32 =>
> esp0x2456c24 at 195.141.2.242
>
> Now the client proposed a certain net, which I don't really want, can
> this be influenced somehow?
>
> Oct 16 12:59:42 sentinel pluto[26463]: "mega-rw"[1] 195.141.2.242 #3:
> the peer proposed: 195.141.2.244/32:0/0 -> 192.168.1.119/32:0/0
>
> Thanks
>
> Erich
>
>
> _______________________________________________
> Users at lists.openswan.org
> https://lists.openswan.org/mailman/listinfo/users
> Micropayments: https://flattr.com/thing/38387/IPsec-for-Linux-made-easy
> Building and Integrating Virtual Private Networks with Openswan:
> http://www.amazon.com/gp/product/1904811256/104-3099591-2946327?n=283155
>
>
--
-
Kit Peters (W0KEH), Engineer II
KMOS TV Channel 6 / KTBG 90.9 FM
University of Central Missouri
http://kmos.org/ | http://ktbg.fm/
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openswan.org/pipermail/users/attachments/20121016/2fe2e4b6/attachment.html>
More information about the Users
mailing list