<html>
<head>
<style>
.hmmessage P
{
margin:0px;
padding:0px
}
body.hmmessage
{
FONT-SIZE: 10pt;
FONT-FAMILY:Tahoma
}
</style>
</head>
<body class='hmmessage'>
Hi all, <BR>some news about my problem about Ipsec\L2tpd connection.<BR>First of all I realized my router filter all the ping-tries, and so that's the reason it fail.<BR>Then I established the L2tpd connection from my roadwarrior to the server, assigning to the client an IP address of the gateway's LAN, and <BR>
everything work.I mean, if i ping the virtual address of the warrior inside the lan from an host within the lan, my roadwarrior reply to the requests.<BR>Now, the real problem: I'm still not able to establish the L2tp connection OVER the IPsec tunnel.<BR>I mean: I can establish the host-to-host IPsec tunnel easily (this is what /etc/init.d/ipsec status told me), but after this <BR>
I'm not able to establish the L2tpd connection.<BR>
Whe I lunch the xl2tpd daemon on my roadwarrior, I can only see ESP packets to the server without any reply from this last one, and plus <BR>
no packets reach the server. It looks like the packets are not able to reach the server, and so they go missed.<BR>I tryed Linux and WinXP client, following Jacco's pages, but with no luck.<BR>The labs where I'm testing this thesis work is <BR>equipped with a block of public IP addresses, which is 141.250.40.0/24, and 141.250.40.51-141.250.40.52-141.250.40.56 are<BR>
the 3 free IP addressess of the LAN, a.b.c.51 and a.b.c.52 will be assigned to my roadwarriors.<BR>
<BR>Here are my conf files<BR>
<BR>
l2tpd.conf<BR>
<BR>
[global] <BR>listen-addr=141.250.40.34 <BR><BR>
[lns default]<BR>
ip range = 141.250.40.51 - 141.250.40.52 <BR>local ip = 141.250.40.56 <BR>length bit = yes <BR>require chap = yes <BR>refuse pap = yes <BR>require authentication = yes <BR>hostname = server_diei ; * Report this as our hostname<BR>ppp debug = yes ; * Turn on PPP debugging<BR>pppoptfile= /etc/ppp/options.l2tpd.lns ; * ppp options file<BR>
<BR>
<BR> ipsec.conf<BR>
<BR> config setup<BR>interfaces=%defaultroute<BR>virtual_private=%v4:192.168.0.0/16,%v4:10.1.0.0/16<BR>klipsdebug=none<BR>plutodebug=none<BR> <BR>conn %default<BR>esp=3des-md5<BR><BR>conn prova<BR>left=141.250.40.34<BR>leftnexthop=141.250.40.30<BR>right=%any<BR>rightsubnet=vhost:%no,%priv<BR>pfs=no<BR>rightprotoport=17/%any<BR>leftprotoport=17/1701<BR>authby=secret<BR>type=tunnel<BR>auto=start<BR><BR>#Disable Opportunistic Encryption<BR>include /etc/ipsec.d/examples/no_oe.conf<BR><BR>I do hope somebody can help me.<BR>Thank you all in advance.<BR><BR><br /><hr />Foto, blog, amici. crea il tuo spazio online! <a href='http://home.services.spaces.live.com/' target='_new'>C'è Spaces!</a></body>
</html>