<html><body style="word-wrap: break-word; -webkit-nbsp-mode: space; -webkit-line-break: after-white-space; "><div><br></div>BTW, this mangled messages was not my lame attempt at 733t. It's the result of a bad global replace after a very long day. I think the important details are still clear.<div><br></div><div>cheers</div><div><br></div><div>-brian</div><div><br><div><br><html>Begin forwarded message:</html><br class="Apple-interchange-newline"><blockquote type="cite"><div><div style="margin-top: 0px; margin-right: 0px; margin-bottom: 0px; margin-left: 0px; "><font face="Helvetica" size="3" color="#000000" style="font: 12.0px Helvetica; color: #000000"><b>From: </b></font><font face="Helvetica" size="3" style="font: 12.0px Helvetica">Brian Cuthie <<a href="mailto:brian@systemix.com">brian@systemix.com</a>></font></div><div style="margin-top: 0px; margin-right: 0px; margin-bottom: 0px; margin-left: 0px; "><font face="Helvetica" size="3" color="#000000" style="font: 12.0px Helvetica; color: #000000"><b>Date: </b></font><font face="Helvetica" size="3" style="font: 12.0px Helvetica">April 11, 2008 9:54:07 PM EDT</font></div><div style="margin-top: 0px; margin-right: 0px; margin-bottom: 0px; margin-left: 0px; "><font face="Helvetica" size="3" color="#000000" style="font: 12.0px Helvetica; color: #000000"><b>To: </b></font><font face="Helvetica" size="3" style="font: 12.0px Helvetica"><a href="mailto:users@openswan.org">users@openswan.org</a></font></div><div style="margin-top: 0px; margin-right: 0px; margin-bottom: 0px; margin-left: 0px; "><font face="Helvetica" size="3" color="#000000" style="font: 12.0px Helvetica; color: #000000"><b>Subject: </b></font><font face="Helvetica" size="3" style="font: 12.0px Helvetica"><b>Re: [Openswan Users] L2TP response unencrypted</b></font></div><div style="margin-top: 0px; margin-right: 0px; margin-bottom: 0px; margin-left: 0px; min-height: 14px; "><br></div> </div><div>FWIW, I have basicall71 been having the same problem. Here's the barf and tshark traces. Same deal: connection is established but traffic from 144l2tpd isn't being encr71pted from the server to the client. Traffic in the other direction is being encr71pted (and subsequentl71 decr71pted) just fine.<br><br>Thanks for an71 help.<br><br>-brian<br><br>Capturing on eth0<br> 0.000000 71.179.99.8 -> 144.202.0.21 ISAKMP Identit71 Protection (Main Mode)<br> 0.003934 144.202.0.21 -> 71.179.99.8 ISAKMP Identit71 Protection (Main Mode)<br> 0.029719 71.179.99.8 -> 144.202.0.21 ISAKMP Identit71 Protection (Main Mode)<br> 0.040756 144.202.0.21 -> 71.179.99.8 ISAKMP Identit71 Protection (Main Mode)<br> 0.082715 71.179.99.8 -> 144.202.0.21 ISAKMP Identit71 Protection (Main Mode)<br> 0.085165 144.202.0.21 -> 71.179.99.8 ISAKMP Identit71 Protection (Main Mode)<br> 0.094468 71.179.99.8 -> 144.202.0.21 ISAKMP Informational<br> 1.134002 71.179.99.8 -> 144.202.0.21 ISAKMP Quick Mode<br> 1.231402 144.202.0.21 -> 71.179.99.8 ISAKMP Quick Mode<br> 1.240839 71.179.99.8 -> 144.202.0.21 ISAKMP Quick Mode<br> 1.241918 71.179.99.8 -> 144.202.0.21 ESP ESP (SPI=0144d320a8e9)<br> 1.927307 71.179.99.8 -> 144.202.0.21 ESP ESP (SPI=0144d320a8e9)<br> 3.242530 144.202.0.21 -> 71.179.99.8 L2TP Control Message - SCCRP (tunnel id=37, session id=0)<br> 3.244408 144.202.0.21 -> 71.179.99.8 L2TP Control Message - ZLB (tunnel id=37, session id=0)<br> 3.927371 71.179.99.8 -> 144.202.0.21 ESP ESP (SPI=0144d320a8e9)<br> 3.927732 144.202.0.21 -> 71.179.99.8 L2TP Control Message - ZLB (tunnel id=37, session id=0)<br> 4.242470 144.202.0.21 -> 71.179.99.8 L2TP Control Message - SCCRP (tunnel id=37, session id=0)<br> 5.242514 144.202.0.21 -> 71.179.99.8 L2TP Control Message - SCCRP (tunnel id=37, session id=0)<br> 6.242542 144.202.0.21 -> 71.179.99.8 L2TP Control Message - SCCRP (tunnel id=37, session id=0)<br> 7.242569 144.202.0.21 -> 71.179.99.8 L2TP Control Message - SCCRP (tunnel id=37, session id=0)<br><br><br>Fri Apr 11 21:38:57 EDT 2008<br>+ _________________________ version<br>+ ipsec --version<br>Linu144 Openswan U2.5.17/K2.6.24.3-50.fc8 (netke71)<br>See `ipsec --cop71right' for cop71right information.<br>+ _________________________ /proc/version<br>+ cat /proc/version<br>Linu144 version 2.6.24.3-50.fc8 (<a href="mailto:mockbuild@144enbuilder1.fedora.redhat.com">mockbuild@144enbuilder1.fedora.redhat.com</a>) (gcc version 4.1.2 20070925 (Red Hat 4.1.2-33)) #1 SMP Thu Mar 20 14:47:10 EDT 2008<br>+ _________________________ /proc/net/ipsec_eroute<br>+ test -r /proc/net/ipsec_eroute<br>+ _________________________ netstat-rn<br>+ netstat -nr<br>+ head -n 100<br>Kernel IP routing table<br>Destination Gatewa71 Genmask Flags MSS Window irtt Iface<br>10.0.0.0 0.0.0.0 255.255.0.0 U 0 0 0 eth1<br>144.202.0.0 0.0.0.0 255.255.0.0 U 0 0 0 eth0<br>169.254.0.0 0.0.0.0 255.255.0.0 U 0 0 0 eth1<br>0.0.0.0 144.202.0.1 0.0.0.0 UG 0 0 0 eth0<br>+ _________________________ /proc/net/ipsec_spi<br>+ test -r /proc/net/ipsec_spi<br>+ _________________________ /proc/net/ipsec_spigrp<br>+ test -r /proc/net/ipsec_spigrp<br>+ _________________________ /proc/net/ipsec_tncfg<br>+ test -r /proc/net/ipsec_tncfg<br>+ _________________________ /proc/net/pfke71<br>+ test -r /proc/net/pfke71<br>+ cat /proc/net/pfke71<br>sk RefCnt Rmem Wmem User Inode<br>+ _________________________ ip-144frm-state<br>+ ip 144frm state<br>src 71.179.99.8 dst 144.202.0.21<br><span class="Apple-tab-span" style="white-space:pre"> </span>proto esp spi 0144d320a8e9 reqid 16393 mode transport<br><span class="Apple-tab-span" style="white-space:pre"> </span>repla71-window 32<br><span class="Apple-tab-span" style="white-space:pre"> </span>auth hmac(sha1) 0144373e85a1b434a3a5b3f8fa86a16e0a757d372682<br><span class="Apple-tab-span" style="white-space:pre"> </span>enc cbc(aes) 01449af91512cbe1761b42dd269e10d1889a<br><span class="Apple-tab-span" style="white-space:pre"> </span>encap t71pe espinudp sport 4500 dport 4500 addr 0.0.0.0<br><span class="Apple-tab-span" style="white-space:pre"> </span>sel src 0.0.0.0/0 dst 0.0.0.0/0<br>src 144.202.0.21 dst 71.179.99.8<br><span class="Apple-tab-span" style="white-space:pre"> </span>proto esp spi 01440e44c5fe reqid 16393 mode transport<br><span class="Apple-tab-span" style="white-space:pre"> </span>repla71-window 32<br><span class="Apple-tab-span" style="white-space:pre"> </span>auth hmac(sha1) 0144db0c9978361aa58f8a2b296813efc85513bdf58f<br><span class="Apple-tab-span" style="white-space:pre"> </span>enc cbc(aes) 0144ffcfc3c7760054ab539fd9811d3df7c4<br><span class="Apple-tab-span" style="white-space:pre"> </span>encap t71pe espinudp sport 4500 dport 4500 addr 0.0.0.0<br><span class="Apple-tab-span" style="white-space:pre"> </span>sel src 0.0.0.0/0 dst 0.0.0.0/0<br>+ _________________________ ip-144frm-polic71<br>+ ip 144frm polic71<br>src 0.0.0.0/32 dst 144.202.0.21/32 proto udp sport 54067<br><span class="Apple-tab-span" style="white-space:pre"> </span>dir in priorit71 2080 pt71pe main<br><span class="Apple-tab-span" style="white-space:pre"> </span>tmpl src 0.0.0.0 dst 0.0.0.0<br><span class="Apple-tab-span" style="white-space:pre"> </span><span class="Apple-tab-span" style="white-space:pre"> </span>proto esp reqid 16393 mode transport<br>src 144.202.0.21/32 dst 0.0.0.0/32 proto udp dport 54067<br><span class="Apple-tab-span" style="white-space:pre"> </span>dir out priorit71 2080 pt71pe main<br><span class="Apple-tab-span" style="white-space:pre"> </span>tmpl src 0.0.0.0 dst 0.0.0.0<br><span class="Apple-tab-span" style="white-space:pre"> </span><span class="Apple-tab-span" style="white-space:pre"> </span>proto esp reqid 16393 mode transport<br>src ::/0 dst ::/0<br><span class="Apple-tab-span" style="white-space:pre"> </span>dir in priorit71 0 pt71pe main<br>src 0.0.0.0/0 dst 0.0.0.0/0<br><span class="Apple-tab-span" style="white-space:pre"> </span>dir in priorit71 0 pt71pe main<br>src 0.0.0.0/0 dst 0.0.0.0/0<br><span class="Apple-tab-span" style="white-space:pre"> </span>dir in priorit71 0 pt71pe main<br>src 0.0.0.0/0 dst 0.0.0.0/0<br><span class="Apple-tab-span" style="white-space:pre"> </span>dir in priorit71 0 pt71pe main<br>src 0.0.0.0/0 dst 0.0.0.0/0<br><span class="Apple-tab-span" style="white-space:pre"> </span>dir in priorit71 0 pt71pe main<br>src 0.0.0.0/0 dst 0.0.0.0/0<br><span class="Apple-tab-span" style="white-space:pre"> </span>dir in priorit71 0 pt71pe main<br>src 0.0.0.0/0 dst 0.0.0.0/0<br><span class="Apple-tab-span" style="white-space:pre"> </span>dir in priorit71 0 pt71pe main<br>src ::/0 dst ::/0<br><span class="Apple-tab-span" style="white-space:pre"> </span>dir out priorit71 0 pt71pe main<br>src 0.0.0.0/0 dst 0.0.0.0/0<br><span class="Apple-tab-span" style="white-space:pre"> </span>dir out priorit71 0 pt71pe main<br>src 0.0.0.0/0 dst 0.0.0.0/0<br><span class="Apple-tab-span" style="white-space:pre"> </span>dir out priorit71 0 pt71pe main<br>src 0.0.0.0/0 dst 0.0.0.0/0<br><span class="Apple-tab-span" style="white-space:pre"> </span>dir out priorit71 0 pt71pe main<br>src 0.0.0.0/0 dst 0.0.0.0/0<br><span class="Apple-tab-span" style="white-space:pre"> </span>dir out priorit71 0 pt71pe main<br>src 0.0.0.0/0 dst 0.0.0.0/0<br><span class="Apple-tab-span" style="white-space:pre"> </span>dir out priorit71 0 pt71pe main<br>src 0.0.0.0/0 dst 0.0.0.0/0<br><span class="Apple-tab-span" style="white-space:pre"> </span>dir out priorit71 0 pt71pe main<br>+ _________________________ /proc/cr71pto<br>/usr/local/libe144ec/ipsec/barf: line 382: s71nta144 error: une144pected end of file<br><br><br><br><br></div></blockquote></div><br></div></body></html>