[Openswan Users] L2TP + Openswan

Jacco de Leeuw jacco2 at dds.nl
Tue Dec 14 17:14:47 CET 2004

Giovani Moda wrote:

> I have Openswan up and running on a Fedora Core 2 box, Jacco's rp-l2tp
> and pppd 2.4.3. The XP box (SP2) can tunnel up just fine. But that's
> about it. 

It Works For Me (tm). I am using the following on FC2:


I mainly tested with Windows 2000 but I don't see why XP SP2 should not
work, especially since there is no NAT involved. You are using the Wizard,
right? You're not manually creating an IPsec policy for a PSK?

> # Bind address
> listen-port 1701
> listen-addr A.B.C.D

What happens if you comment out the listen-addr? Is A.B.C.D your external

rp-l2tp does not support IP pools if you don't use the RADIUS plugin. This
make l2tpd slightly easier to use for simple setups. You can of course use
static IP addresses with rp-l2tp but for some this is a limitation.

I'm not sure what the best way is to support multiple clients with rp-l2tp
without using a RADIUS server.  Perhaps Norbert can comment on this? Do you
simply create multiple 'peer sections' with different remote IP addresses?
I don't understand how this will support road warriors.

Jacco de Leeuw                         mailto:jacco2 at dds.nl
Zaandam, The Netherlands           http://www.jacco2.dds.nl

More information about the Users mailing list