[Openswan Users] L2TP + Openswan

Giovani Moda - MR Informática giovani at mrinformatica.com.br
Tue Dec 14 09:32:58 CET 2004

Well, klips debug won't do the trick. Still no logs. But I got something on 
the tcpdump:

udp port l2tp unreachable

Now I know it's something with my firewall. I'll try Openswan 2.3.0-dr4. At 
least I'll have a ipsec# device that I can grant access more easily. I cant' 
and won't mess with my firewall right now. To much headache, too little 

I'll let you know.



----- Original Message ----- 
From: "Paul Wouters" <paul at xelerance.com>
To: "Giovani Moda - MR Informática" <giovani at mrinformatica.com.br>
Cc: <users at lists.openswan.org>
Sent: Tuesday, December 14, 2004 8:59 AM
Subject: Re: [Openswan Users] L2TP + Openswan

> On Tue, 14 Dec 2004, Giovani Moda - MR Informática wrote:
>> That's the problem. There are no logs. There are no errors, nothing I can
>> follow to try to figure it out.
>> The tunnel is up, but nothing happens after that. No errors, no 
>> complains, no
>> nothing.
> Try adding klipsdebug=all and look for messages why klips might be 
> dropping packets.
> If you are using NETKEY, you will have a hard time, as it doesn't log why 
> it drops
> things (AFAIK).
> The reason these arent logged per default is that this would be a simple 
> DOS.
> It might be NAT or an ipsec passthrough device that is mangling your 
> packets.
> Paul 

No virus found in this outgoing message.
Checked by AVG Anti-Virus.
Version: 7.0.296 / Virus Database: 265.5.2 - Release Date: 13/12/2004

More information about the Users mailing list