[Openswan Users] unencrypted l2tp packets

Paul Wouters paul at xelerance.com
Sun Feb 12 03:44:54 CET 2006


On Fri, 10 Feb 2006, Ben Willmore wrote:

> conn L2TP-PSK
>   authby=secret
>   pfs=no
>   rekey=no
>   keyingtries=3
>   left=%defaultroute
>   leftsubnet=xx.xx.xx.xx/32
>   leftprotoport=17/1701
>   right=%any
>   rightsubnet=vhost:%no,%priv
>   rightprotoport=17/%any
>   auto=add

You should not be using any leftsubnet= for L2TP connections.
See openswan-2/examples/ for example L2TP configurations.

Paul


More information about the Users mailing list