[Openswan Users] Frequent disconnection for Window XP Professional; more stable for Windows 2000 (IPsec/L2TP)

Xunhua Wang wangxx at jmu.edu
Thu Apr 27 18:50:54 CEST 2006 

Hi there,

Our VPN server is running "Linux Openswan U2.4.5/K2.6.9-5.ELsmp (netkey)"
and xl2tp-1.04.

We can connect to the VPN server using both Windows XP professional (with
SP2 and this patch:
http://support.microsoft.com/default.aspx?scid=kb;en-us;907865) and Windows
2000.

The connections from Windows 2000 clients are pretty stable but the
connections from Windows XP clients are very shaky. Basically Windows XP
Professional clients are disconnected in every minute.

We found the following message in /var/log/messages

---------- /var/log/messages ----------
Apr 27 15:56:51 localhost l2tpd[3120]: Maximum retries exceeded for tunnel
5519.  Closing. 
Apr 27 15:56:51 localhost pppd[2558]: Terminating on signal 15.
Apr 27 15:56:51 localhost pppd[2558]: Modem hangup
Apr 27 15:56:51 localhost pppd[2558]: Script /etc/ppp/ip-down started (pid
3072)
Apr 27 15:56:51 localhost pppd[2558]: Connection terminated.
Apr 27 15:56:51 localhost pppd[2558]: Connect time 1.1 minutes.
Apr 27 15:56:51 localhost pppd[2558]: Sent 7800 bytes, received 6239 bytes


And in /var/log/l2tpd.log we got these:
--------- /var/log/l2tpd.log ----------

Terminating on signal 15.
Modem hangup
Script /etc/ppp/ip-down started (pid 4020)
Connection terminated.
Connect time 1.1 minutes.
Sent 5140 bytes, received 6302 bytes.
Waiting for 1 child processes...
  script /etc/ppp/ip-down, pid 4020
Script /etc/ppp/ip-down finished (pid 4020), status = 0x0
Connect time 1.1 minutes.
Sent 5140 bytes, received 6302 bytes.
------------------------------------------

It looks like that our l2tpd server sends a SIGTERM to its pppd very often.
What is wrong with our l2tpd server configuration?  I attach the
configuration files in this email.

Thanks,

Steve 
-------------- next part --------------
A non-text attachment was scrubbed...
Name: l2tpd.conf
Type: application/octet-stream
Size: 1032 bytes
Desc: not available
Url : http://lists.openswan.org/pipermail/users/attachments/20060427/d2d645c7/l2tpd.obj
-------------- next part --------------
A non-text attachment was scrubbed...
Name: options.l2tpd
Type: application/octet-stream
Size: 223 bytes
Desc: not available
Url : http://lists.openswan.org/pipermail/users/attachments/20060427/d2d645c7/options.obj
-------------- next part --------------
A non-text attachment was scrubbed...
Name: ipsec.conf
Type: application/octet-stream
Size: 938 bytes
Desc: not available
Url : http://lists.openswan.org/pipermail/users/attachments/20060427/d2d645c7/ipsec.obj

More information about the Users mailing list