<div dir="ltr">Dear all,<div><br></div><div>MY goal is to run l2tp over IPsec, however, some packets from the xl2tpd server are not appearing in ipsec0 interface (but corresponding esp are seen in eth0).</div><div>I tried to simplify the expirement:</div>
<div><br></div><div>on the server I run: nc -l -u -p 9999</div><div>on a natted client i run: nc -u server_IP 9999</div><div><br></div><div>I tried these command on both tunnel & transport modes (some times I let the client listen on port 9999). The problem is, when using transport mode, ipsec0 is not showing everything, and therefore applications layer can't exchange protocols consistently. Sometimes ping works but this experiment shows inconsistency.</div>
<div><br></div><div>My network is like the following:</div><div><br></div><div>local server (10.0.0.xx) <====> NAT router (Public IP) <==> internet <====> NAT router <===> Road warrior (mobile)</div>
<div><br></div><div>Many mobile clients use Transport mode, therefore I need this fixed up.</div><div><br></div><div>Please help me ASAP</div><div><br></div><div><br></div><div>Here is my ipsec.conf</div><div><div><br></div>
<div>version 2.0 </div><div><br></div><div>config setup</div><div> nat_traversal=yes</div><div> virtual_private=%v4:<a href="http://10.0.0.0/8,%v4:192.168.0.0/16,%v4:172.16.0.0/12,%v4:!10.0.0.0/24">10.0.0.0/8,%v4:192.168.0.0/16,%v4:172.16.0.0/12,%v4:!10.0.0.0/24</a></div>
<div> oe=off</div><div> protostack=klips</div></div><div><br></div><div><div>conn %default</div><div> type=tunnel</div><div> keyingtries=3</div><div> overlapip=yes</div><div> forceencaps=yes</div>
<div><br></div><div> left=10.0.0.105</div><div> leftid=<a href="http://majid.mooo.com">majid.mooo.com</a></div><div> leftsubnet=<a href="http://10.0.0.0/24">10.0.0.0/24</a></div><div> leftnexthop=%defaultroute</div>
<div> right=%any</div><div> rightnexthop=%defaultroute</div><div> rightsubnet=vhost:%no,%priv</div><div> authby=secret</div><div> pfs=no</div><div><br></div><div> rekey=no</div><div>
<br></div><div>conn road</div><div> auto=add</div></div><div><br></div><div><br>-- <br>Regards,<br><br>Majid Khonji<br><br>
</div></div>