[Openswan dev] [Openswan Users] IPSEC/L2TP does not work

Wolfgang Nothdurft openswan at linux-dude.de
Mon Nov 7 13:46:16 EST 2011


Am 07.11.2011 18:36, schrieb Paul Wouters:
> On Mon, 7 Nov 2011, Wolfgang Nothdurft wrote:
>
>>>> Nov  6 12:35:18 l2tpd[2490]: l2tpd version 0.69 started on (none) PID:2490
>>>> Nov  6 12:35:25 pluto[2651]: Starting Pluto (Openswan Version 1.0.1)
>
>> I don't know who is doing wrong here, MS or pluto?
>
> It might not be a matter of wrong. openswan 1.0.1 is missing 7 years of IETF RFC's
> on top of any bugs we have fixed in the last 7 years.
>
>> Regarding the logs I saw the following windows clients:
>>
>> Windows XP SP2 = MS NT5 ISAKMPOAKLEY 00000004
>> Windows Vista = MS NT5 ISAKMPOAKLEY 00000006
>> Windows 7 = MS NT5 ISAKMPOAKLEY 00000008
>>
>> Thus exactly plus one as documented.
>>
>> http://git.openswan.org/cgi-bin/gitweb.cgi?p=openswan.public/.git;a=commitdiff;h=7f7a291a8d2f9c832fee3cb811d76a3f99f88eed
>>
>> http://msdn.microsoft.com/en-us/library/cc233476%28v=prot.10%29.aspx
>
> If i read it, it does say:
>
>          Windows 7 00 00 00 07
>          Windows Server 2008 R2 00 00 00 08

That's right, that is what MS wrote.

But I mean the log output from actual openswan versions 2.6.x.
We have many customers with windows clients, they show the above numbers 
with the above clients connected.

Maybe Windows sents a wrong number or openswan increases the number.

Wolfgang


More information about the Dev mailing list