[Openswan Users] L2TP + Openswan
Giovani Moda - MR Informática
giovani at mrinformatica.com.br
Tue Dec 14 09:32:58 CET 2004
Well, klips debug won't do the trick. Still no logs. But I got something on
the tcpdump:
udp port l2tp unreachable
Now I know it's something with my firewall. I'll try Openswan 2.3.0-dr4. At
least I'll have a ipsec# device that I can grant access more easily. I cant'
and won't mess with my firewall right now. To much headache, too little
time.
I'll let you know.
Thanks,
Giovani
----- Original Message -----
From: "Paul Wouters" <paul at xelerance.com>
To: "Giovani Moda - MR Informática" <giovani at mrinformatica.com.br>
Cc: <users at lists.openswan.org>
Sent: Tuesday, December 14, 2004 8:59 AM
Subject: Re: [Openswan Users] L2TP + Openswan
> On Tue, 14 Dec 2004, Giovani Moda - MR Informática wrote:
>
>> That's the problem. There are no logs. There are no errors, nothing I can
>> follow to try to figure it out.
>>
>> The tunnel is up, but nothing happens after that. No errors, no
>> complains, no
>> nothing.
>
> Try adding klipsdebug=all and look for messages why klips might be
> dropping packets.
> If you are using NETKEY, you will have a hard time, as it doesn't log why
> it drops
> things (AFAIK).
>
> The reason these arent logged per default is that this would be a simple
> DOS.
>
> It might be NAT or an ipsec passthrough device that is mangling your
> packets.
>
> Paul
--
No virus found in this outgoing message.
Checked by AVG Anti-Virus.
Version: 7.0.296 / Virus Database: 265.5.2 - Release Date: 13/12/2004
More information about the Users
mailing list