<html><head><meta http-equiv="Content-Type" content="text/html charset=us-ascii"></head><body style="word-wrap: break-word; -webkit-nbsp-mode: space; -webkit-line-break: after-white-space; ">Rescued from the Spam bucket. Please remember to subscribe to the mailing list before posting to it.<br><div><br></div><div><br><div><div style="margin-top: 0px; margin-right: 0px; margin-bottom: 0px; margin-left: 0px;"><span style="font-family:'Helvetica'; font-size:medium; color:rgba(127, 127, 127, 1.0);"><b>From: </b></span><span style="font-family:'Helvetica'; font-size:medium;">Adam Jefferiss <<a href="mailto:adam.jefferiss@gmail.com">adam.jefferiss@gmail.com</a>><br></span></div><div style="margin-top: 0px; margin-right: 0px; margin-bottom: 0px; margin-left: 0px;"><span style="font-family:'Helvetica'; font-size:medium; color:rgba(127, 127, 127, 1.0);"><b>Subject: </b></span><span style="font-family:'Helvetica'; font-size:medium;"><b>Re: ipsec interfaces share address</b><br></span></div><div style="margin-top: 0px; margin-right: 0px; margin-bottom: 0px; margin-left: 0px;"><span style="font-family:'Helvetica'; font-size:medium; color:rgba(127, 127, 127, 1.0);"><b>Date: </b></span><span style="font-family:'Helvetica'; font-size:medium;">21 June, 2013 6:08:09 AM EDT<br></span></div><div style="margin-top: 0px; margin-right: 0px; margin-bottom: 0px; margin-left: 0px;"><span style="font-family:'Helvetica'; font-size:medium; color:rgba(127, 127, 127, 1.0);"><b>To: </b></span><span style="font-family:'Helvetica'; font-size:medium;"><a href="mailto:users@lists.openswan.org">users@lists.openswan.org</a><br></span></div><br><br><div dir="ltr"><div><div>I've found out what was actually happening after speaking to a couple of people using the machine that was causing problems.<br><br></div>Apparently, they were just restarting ipsec and not xl2tpd as well. After a bit of testing I've only been able to reproduce this when I've got a connection open, then restart ipsec with "/etc/init.d/ispec restart" without first closing down xl2tp. Sorry for the bother, I'll make sure they're restarting both in future.<br>
<br></div>Cheers,<br>Adam<br></div><div class="gmail_extra"><br><br><div class="gmail_quote">On 21 June 2013 08:38, Adam Jefferiss <span dir="ltr"><<a href="mailto:adam.jefferiss@gmail.com" target="_blank">adam.jefferiss@gmail.com</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div dir="ltr"><div><div><div>Hi,<br><br></div>I've noticed the following appearing within my logs, when it happens no one can connect until I restart ipsec again; does anyone have any suggests as to the cause or solution?<br>
<br>Jun 20 17:41:13 gateway ipsec_setup: ...Openswan IPsec started<br>Jun 20 17:41:13 gateway ipsec__plutorun: 002 added connection description "L2TP"way ipsec__plutorun: 003 IP interfaces ppp4 and ppp2 share address 10.44.15.131!<br>
Jun 20 17:29:10 gateway ipsec__plutorun: 003 IP interfaces ppp4 and eth0 share address 10.44.15.131!<br>Jun 20 17:29:10 gateway ipsec__plutorun: 003 IP interfaces ppp0 and ppp2 share address 10.44.15.131!<br>Jun 20 17:29:10 gateway ipsec__plutorun: 003 IP interfaces ppp0 and eth0 share address 10.44.15.131!<br>
Jun 20 17:29:10 gateway ipsec__plutorun: 003 IP interfaces ppp2 and eth0 share address 10.44.15.131!<br>Jun 20 17:29:10 gateway ipsec__plutorun: 003 no public interfaces found<br><br></div>My config currently contians:<br>
<br>version 2.0 # conforms to second version of ipsec.conf specification<br><br># basic configuration<br>config setup<br> nat_traversal=yes<br> virtual_private=%v4:<a href="http://10.0.0.0/8,%v4:192.168.0.0/16,%v4:172.16.0.0/12" target="_blank">10.0.0.0/8,%v4:192.168.0.0/16,%v4:172.16.0.0/12</a><br>
oe=off<br> # Which IPsec stack to use: netkey, klips, mast, auto or none<br> protostack=klips<br> plutostderrlog=/var/log/pluto.log<br><br> nhelpers=0<br><br>conn L2TP<br> authby=secret<br> auto=add<br>
pfs=no<br> type=transport<br> rekey=no<br> compress=yes<br> left=10.44.15.131<br> leftnexthop=10.44.15.251<br> leftprotoport=17/1701<br><br> right=%any<br> rightsubnet=vhost:%no,%priv<br> rightprotoport=17/%any<br>
forceencaps=yes<br> dpddelay=40<br> dpdtimeout=130<br> dpdaction=clear<br><br></div>Thanks,<br>Adam<br><div><br><div><br><div><br><div><span lang="en-GB"></span><br></div></div></div></div></div>
</blockquote></div><br></div>
<br><br></div></div><br></body></html>