I did the changes on the ipsec.conf, also as <span class="q" id="q_1129539bb12c61ab_3"><span>
Tomasz Grzelak
<br>told me I put the leftnexthop parameter and I worked.<br><br>Thank you.<br><br>PS: I'm going to test xl2tpd, I will let you know of my result.<br><br>Great tutorial.<br></span></span><br><div><span class="gmail_quote">
On 5/16/07, <b class="gmail_sendername">Jacco de Leeuw</b> <<a href="mailto:jacco2@dds.nl">jacco2@dds.nl</a>> wrote:</span><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
<br>Hi Rafael,<br><br>> I'm using Debian 4.0 with kernel 2.6.18-4-686<br>> l2tpd Version 0.70-pre20031121-2.2<br><br>There is something odd with l2tpd on Debian 3.x (although I personally<br>haven't tried 4.x
). Could you compile and try xl2tpd?<br><br>> plutodebug="control"<br><br>Use none, unless you are a developer.<br><br>> virtual_private=%v4:<a href="http://10.0.0.0/8,%v4:192.168.0.0/16,%v4:172.16.0.0/12">
10.0.0.0/8,%v4:192.168.0.0/16,%v4:172.16.0.0/12</a><br><br>Exclude your internal subnet:<br>virtual_private=%v4:<a href="http://10.0.0.0/8,%v4:192.168.0.0/16,%v4:172.16.0.0/12,%v4:!172.16.3.0/24">10.0.0.0/8,%v4:192.168.0.0/16,%v4:172.16.0.0/12,%v4:!172.16.3.0/24
</a><br><br>> conn L2TP-PSK<br>> authby=secret<br>> right=%any<br>> rightprotoport=17/%any<br><br>There is currently a known problem with this combination, if NAT is<br>involved. Probably the easiest solution would be to switch to
<br>certificates or to use rightprotoport=17/1701 (which unfortunately<br>drops support for Mac clients).<br><br>And if you want to support Vista client, you will have to add:<br><br>rightsubnet=vhost:%no,%priv<br><br>Jacco
<br>--<br>Jacco de Leeuw mailto:<a href="mailto:jacco2@dds.nl">jacco2@dds.nl</a><br>Zaandam, The Netherlands <a href="http://www.jacco2.dds.nl">http://www.jacco2.dds.nl</a><br><br></blockquote>
</div><br><br clear="all"><br>-- <br>Saludos.<br>Linux Registered User 422700<br>-RA-