[Openswan Users] l2tp/ipsec problem

Norbert Wegener nw at sbs.de
Sun Apr 2 22:53:38 CEST 2006

Jacco de Leeuw wrote:

> Norbert Wegener wrote:
>> We get some userfeedback stating, that they can connect to an 
>> openswan gateway via their dsl-router, when they use a cable.
>> Their session to the same gateway does not come up, when they connect 
>> wireless via the same dsl router to the same gaeway using the same 
>> (xp,sp2) client.
>> As those users are far away, there is no chance to have a look at 
>> their environment.
> Did you notice anything in the logs? Can users access machines on
> their LAN and the DSL router itself? Can they ping the Openswan
> server? 

The ipsec sa is established, but then nothing more happens. the l2tp 
part does not start. So the problem is reduced to why that part does not 
come up.

> Is the wireless network bridged or does it have a separate
> subnet?

It is a natting router with a private subnet.

> Is there a firewall on the DSL router that is blocking things?

As the users told me, no.

>> What could be a way to track such a problem down, or is this a known 
>> problem with a known solution?
> Perhaps you could try to get hold of the same DSL router and recreate
> the setup.

It seems to happen with different models and the problem seems to appear 
in Asia only.
Maybe some low level communication parameters there are different from 
the ones in Europe, I don't know.

> Jacco

More information about the Users mailing list