<span style="color:rgb(34,34,34);font-family:arial,sans-serif;font-size:13px;background-color:rgb(255,255,255)">I have an L2TP / IPsec VPN set up with OpenSwan. I have one particular client machine that I'm using to bridge my local network to a remote network. The VPN connection for that machine will stay up for days at a time, but if the connection is lost, I sometimes have to restart Openswan and xl2tpd on both sides. When the connection goes down, I see lots of this in the log on the local side (note that actual IP addresses have been redacted):</span><div style="color:rgb(34,34,34);font-family:arial,sans-serif;font-size:13px;background-color:rgb(255,255,255)">
<br></div><div style="color:rgb(34,34,34);font-family:arial,sans-serif;font-size:13px;background-color:rgb(255,255,255)"><br clear="all"><div><div>Oct 30 06:49:14 kmos-vpn-bridge xl2tpd[1157]: Maximum retries exceeded for tunnel 10391. Closing.</div>
<div>Oct 30 06:49:14 kmos-vpn-bridge xl2tpd[1157]: Connection 0 closed to <REMOTE IP>, port 1701 (Timeout)</div><div>Oct 30 06:49:15 kmos-vpn-bridge xl2tpd[1157]: Disconnecting from <REMOTE IP>, Local: 10391, Remote: 0</div>
<div>Oct 30 06:49:15 kmos-vpn-bridge xl2tpd[1157]: Connecting to host <REMOTE IP>, port 1701</div></div><div><br></div><div>And on the remote side:</div><div><br></div><div><div>Oct 30 06:49:12 como-firewall xl2tpd[25142]: check_control: Received out of order control packet on tunnel -1 (got 1, expected 0)</div>
<div>Oct 30 06:49:12 como-firewall xl2tpd[25142]: handle_packet: bad control packet!</div><div>Oct 30 06:49:15 como-firewall xl2tpd[25142]: Maximum retries exceeded for tunnel 64613. Closing.</div><div>Oct 30 06:49:15 como-firewall xl2tpd[25142]: Unable to deliver closing message for tunnel 7600. Destroying anyway.</div>
<div>Oct 30 06:49:15 como-firewall xl2tpd[25142]: control_finish: Peer requested tunnel 1814 twice, ignoring second one.</div><div>Oct 30 06:49:15 como-firewall xl2tpd[25142]: Connection 10391 closed to <LOCAL IP>, port 1701 (Timeout)</div>
<div>Oct 30 06:49:15 como-firewall xl2tpd[25142]: control_finish: Peer requested tunnel 1814 twice, ignoring second one.</div><div>Oct 30 06:49:18 xl2tpd[25142]: last message repeated 2 times</div></div><div><br></div><div>
I should point out that the local machine is behind a NAT.</div><div><br></div><div>The last time this happened was this past Sunday morning, when we had a power failure at the studio. This caused the bridge machine to lose power. When power was restored to the bridge machine, it tried to re-establish the connection with the remote end, but was unable to do so. I had to restart xl2tpd and Openswan.</div>
<div><br></div><div>Any thoughts?</div></div><div><br></div>-- <br><div><span>-</span></div><span>Kit</span> <span>Peters</span> (W0KEH), Engineer II<br>
KMOS TV Channel 6 / KTBG 90.9 FM<br>
University of Central Missouri<br>
<a href="http://kmos.org/" target="_blank">http://kmos.org/</a> | <a href="http://ktbg.fm/" target="_blank">http://ktbg.fm/</a><br>