[Openswan Users] l2tpd problem?
Norman Rasmussen
normanr at gmail.com
Sun May 22 17:09:58 CEST 2005
Yup, I'm sure of it. Unfortunatly I've reached the point where I'm
waiting for someone else to write a patch, because I don't think
there's any config issues that can solve this one. (besides turning
off rekeying totally).
On 22/05/05, Steffen Becker <becker at informatik.uni-oldenburg.de> wrote:
> Hi,
>
> That seems to be related to my problem, see my posts on rekeying....
>
> Cheers,
> Steffen
>
> ------------------------------------------------------------------------
> Dipl. Wirtsch. Inform. Steffen Becker, DFG Junior Research Group "Palladio",
> Fk 2, Department of Computing Science, Software Engineering Group
> CvO Universität Oldenburg / OFFIS, Escherweg 2, D-26121 Oldenburg
> Email: becker at informatik.uni-oldenburg.de
> URL: http://se.informatik.uni-oldenburg.de
> Voice: +49 441 9722-582 (-501, secr.) Fax: +49 441 9722-502
> ------------------------------------------------------------------------
>
>
> > -----Original Message-----
> > From: users-bounces at openswan.org
> > [mailto:users-bounces at openswan.org] On Behalf Of Norman Rasmussen
> > Sent: Saturday, May 21, 2005 10:10 PM
> > To: users at openswan.org
> > Subject: Re: [Openswan Users] l2tpd problem?
> >
> > FYI: I'm running a link between WinXP SP2 and debian testing/sarge
> > running openswan 2.3.0 with l2tpd version 0.69.
> >
> > l2tp works 100% for me, the only issues I'm having is with ipsec
> > trying to rekey after approx 1 hour of the connection being online.
> >
> > On 21/05/05, Randy B <randy at pillowfactory.org> wrote:
> > > > Am I able to get the config above working with l2tpns? I
> > didn't find any
> > > > examples of configuring l2tpns in such a manner. I looked
> > at Alan Whinery's
> > > > example config, but couldn't have found answer to my question.
> > >
> > > I'll be the second to say that you'll need a RADIUS setup
> > on the backend
> > > for l2tpns to work; then you can assign all kinds of fun
> > stuff according
> > > to what permissions specific users/certs/etc. are granted. More
> > > administrative overhead, but if you're doing a production
> > setup, it's
> > > the only scalable, maintainable way to go.
> > >
> > > So, yes - AFAIK, you can [have to?] let RADIUS tell you
> > what IP specific
> > > clients/users should get.
> > > _______________________________________________
> > > Users mailing list
> > > Users at openswan.org
> > > http://lists.openswan.org/mailman/listinfo/users
> > >
> >
> >
> > --
> > - Norman Rasmussen
> > - Email: norman at rasmussen.org
> > - Home page: http://norman.rasmussen.org/
> > _______________________________________________
> > Users mailing list
> > Users at openswan.org
> > http://lists.openswan.org/mailman/listinfo/users
> >
>
>
--
- Norman Rasmussen
- Email: norman at rasmussen.org
- Home page: http://norman.rasmussen.org/
More information about the Users
mailing list