[Openswan Users] openswan 2.2.0 and pocket pc 2003
tgrzelak at wktpolska.com.pl
tgrzelak at wktpolska.com.pl
Mon Dec 27 18:04:16 CET 2004
Greetings!
Has anyone managed to connect a pocket pc 2003 to he openswan server via
L2TP/IPSec? I have configured the server and windows xp clients
(roadwarriors) are able to connect to (ppp authentication is CHAP only),
no matter they are behind NAT or not. This works fine.
But I am not able to connect a pocket pc 2003 client. I have even managed
to import certificates (my CA and client cert + private key, so I don't
use PSK), but connection fails during the l2tp establishment.
It seems a client tries to establish an l2tp session on and on,
but the l2tp daemon cannot establish the connection (in the daemon.log:
'control_finish: Peer requested tunnel 3 twice, ignoring second one.' and
later: 'control_xmit: Maximum retries exceeded for tunnel 52239. Closing.')
I've pasted a part of the log at the end of my message.
Can anyone help me, please? I haven't googled anything about this issue.
Regards!
Tom
P.S.
I use Debian Woody + kernel 2.6.9 + OpenSwan 2.2.0 + l2tp from Debian
testing (I have also tried 0.69, but there's no difference)
And that's the part of the daemon.log:
---------------------------------------------------------------------
Dec 27 15:08:10 guardian l2tpd[20304]: message_type_avp: message type 1
(Start-Control-Connection-Request)
Dec 27 15:08:10 guardian l2tpd[20304]: protocol_version_avp: peer is using
version 1, revision 0.
Dec 27 15:08:10 guardian l2tpd[20304]: framing_caps_avp: supported peer
frames: sync
Dec 27 15:08:10 guardian l2tpd[20304]: bearer_caps_avp: supported peer
bearers:
Dec 27 15:08:10 guardian l2tpd[20304]: firmware_rev_avp: peer reports
firmware version 1026 (0x0402)
Dec 27 15:08:10 guardian l2tpd[20304]: hostname_avp: peer reports hostname
'Pocket_PC'
Dec 27 15:08:10 guardian l2tpd[20304]: vendor_avp: peer reports vendor
'Microsoft'
Dec 27 15:08:10 guardian l2tpd[20304]: assigned_tunnel_avp: using peer's
tunnel 3
Dec 27 15:08:10 guardian l2tpd[20304]: receive_window_size_avp: peer wants
RWS of 8. Will use flow control.
Dec 27 15:08:11 guardian l2tpd[20304]: ourtid = 1253, entropy_buf = 4e5
Dec 27 15:08:11 guardian l2tpd[20304]: check_control: control, cid = 0, Ns
= 0, Nr = 0
Dec 27 15:08:11 guardian l2tpd[20304]: handle_avps: handling avp's for
tunnel 1253, call 0
Dec 27 15:08:11 guardian l2tpd[20304]: message_type_avp: message type 1
(Start-Control-Connection-Request)
Dec 27 15:08:11 guardian l2tpd[20304]: protocol_version_avp: peer is using
version 1, revision 0.
Dec 27 15:08:11 guardian l2tpd[20304]: framing_caps_avp: supported peer
frames: sync
Dec 27 15:08:11 guardian l2tpd[20304]: bearer_caps_avp: supported peer
bearers:
Dec 27 15:08:11 guardian l2tpd[20304]: firmware_rev_avp: peer reports
firmware version 1026 (0x0402)
Dec 27 15:08:11 guardian l2tpd[20304]: hostname_avp: peer reports hostname
'Pocket_PC'
Dec 27 15:08:11 guardian l2tpd[20304]: vendor_avp: peer reports vendor
'Microsoft'
Dec 27 15:08:11 guardian l2tpd[20304]: assigned_tunnel_avp: using peer's
tunnel 3
Dec 27 15:08:11 guardian l2tpd[20304]: receive_window_size_avp: peer wants
RWS of 8. Will use flow control.
Dec 27 15:08:11 guardian l2tpd[20304]: control_finish: Peer requested
tunnel 3 twice, ignoring second one.
Dec 27 15:08:13 guardian l2tpd[20304]: ourtid = 13534, entropy_buf = 34de
Dec 27 15:08:13 guardian l2tpd[20304]: ourcid = 3679, entropy_buf = e5f
Dec 27 15:08:13 guardian l2tpd[20304]: check_control: control, cid = 0, Ns
= 0, Nr = 0
Dec 27 15:08:13 guardian l2tpd[20304]: handle_avps: handling avp's for
tunnel 13534, call 3679
Dec 27 15:08:13 guardian l2tpd[20304]: message_type_avp: message type 1
(Start-Control-Connection-Request)
Dec 27 15:08:13 guardian l2tpd[20304]: protocol_version_avp: peer is using
version 1, revision 0.
Dec 27 15:08:13 guardian l2tpd[20304]: framing_caps_avp: supported peer
frames: sync
Dec 27 15:08:13 guardian l2tpd[20304]: bearer_caps_avp: supported peer
bearers:
Dec 27 15:08:13 guardian l2tpd[20304]: firmware_rev_avp: peer reports
firmware version 1026 (0x0402)
Dec 27 15:08:13 guardian l2tpd[20304]: hostname_avp: peer reports hostname
'Pocket_PC'
Dec 27 15:08:13 guardian l2tpd[20304]: vendor_avp: peer reports vendor
'Microsoft'
Dec 27 15:08:13 guardian l2tpd[20304]: assigned_tunnel_avp: using peer's
tunnel 3
Dec 27 15:08:13 guardian l2tpd[20304]: receive_window_size_avp: peer wants
RWS of 8. Will use flow control.
Dec 27 15:08:13 guardian l2tpd[20304]: control_finish: Peer requested
tunnel 3 twice, ignoring second one.
Dec 27 15:08:15 guardian l2tpd[20304]: control_xmit: Maximum retries
exceeded for tunnel 23316. Closing.
Dec 27 15:08:15 guardian l2tpd[20304]: call_close : Connection 3 closed to
212.2.100.247, port 1701 (Timeout)
Dec 27 15:08:17 guardian l2tpd[20304]: ourtid = 3612, entropy_buf = e1c
Dec 27 15:08:17 guardian l2tpd[20304]: ourcid = 13015, entropy_buf = 32d7
Dec 27 15:08:17 guardian l2tpd[20304]: check_control: control, cid = 0, Ns
= 0, Nr = 0
Dec 27 15:08:17 guardian l2tpd[20304]: handle_avps: handling avp's for
tunnel 3612, call 13015
Dec 27 15:08:17 guardian l2tpd[20304]: message_type_avp: message type 1
(Start-Control-Connection-Request)
Dec 27 15:08:17 guardian l2tpd[20304]: protocol_version_avp: peer is using
version 1, revision 0.
Dec 27 15:08:17 guardian l2tpd[20304]: framing_caps_avp: supported peer
frames: sync
Dec 27 15:08:17 guardian l2tpd[20304]: bearer_caps_avp: supported peer
bearers:
Dec 27 15:08:17 guardian l2tpd[20304]: firmware_rev_avp: peer reports
firmware version 1026 (0x0402)
Dec 27 15:08:17 guardian l2tpd[20304]: hostname_avp: peer reports hostname
'Pocket_PC'
Dec 27 15:08:17 guardian l2tpd[20304]: vendor_avp: peer reports vendor
'Microsoft'
Dec 27 15:08:17 guardian l2tpd[20304]: assigned_tunnel_avp: using peer's
tunnel 3
Dec 27 15:08:17 guardian l2tpd[20304]: receive_window_size_avp: peer wants
RWS of 8. Will use flow control.
Dec 27 15:08:17 guardian l2tpd[20304]: control_finish: Peer requested
tunnel 3 twice, ignoring second one.
Dec 27 15:08:20 guardian l2tpd[20304]: control_xmit: Unable to deliver
closing message for tunnel 23316. Destroying anyway.
Dec 27 15:08:25 guardian l2tpd[20304]: ourtid = 52239, entropy_buf = cc0f
Dec 27 15:08:25 guardian l2tpd[20304]: ourcid = 743, entropy_buf = 2e7
Dec 27 15:08:25 guardian l2tpd[20304]: check_control: control, cid = 0, Ns
= 0, Nr = 0
Dec 27 15:08:25 guardian l2tpd[20304]: handle_avps: handling avp's for
tunnel 52239, call 743
Dec 27 15:08:25 guardian l2tpd[20304]: message_type_avp: message type 1
(Start-Control-Connection-Request)
Dec 27 15:08:25 guardian l2tpd[20304]: protocol_version_avp: peer is using
version 1, revision 0.
Dec 27 15:08:25 guardian l2tpd[20304]: framing_caps_avp: supported peer
frames: sync
Dec 27 15:08:25 guardian l2tpd[20304]: bearer_caps_avp: supported peer
bearers:
Dec 27 15:08:25 guardian l2tpd[20304]: firmware_rev_avp: peer reports
firmware version 1026 (0x0402)
Dec 27 15:08:25 guardian l2tpd[20304]: hostname_avp: peer reports hostname
'Pocket_PC'
Dec 27 15:08:25 guardian l2tpd[20304]: vendor_avp: peer reports vendor
'Microsoft'
Dec 27 15:08:25 guardian l2tpd[20304]: assigned_tunnel_avp: using peer's
tunnel 3
Dec 27 15:08:25 guardian l2tpd[20304]: receive_window_size_avp: peer wants
RWS of 8. Will use flow control.
Dec 27 15:08:30 guardian l2tpd[20304]: control_xmit: Maximum retries
exceeded for tunnel 52239. Closing.
Dec 27 15:08:30 guardian l2tpd[20304]: call_close : Connection 3 closed to
212.2.100.247, port 1701 (Timeout)
Dec 27 15:08:35 guardian l2tpd[20304]: control_xmit: Unable to deliver
closing message for tunnel 52239. Destroying anyway.
-------------------------------------------------------
More information about the Users
mailing list