[Openswan Users] Linux to Linux ipsec/l2tp server

Nathan lists at netdigix.com
Sat Feb 11 19:25:18 CET 2006


did you check that rp_filter is 0?




Quoting Brett Curtis <dashnu at gmail.com>:

> This has been working great for my windows users for a number of  
> months but now I am back on track trying to get a linux client to  
> connect.
> 
> Connecting from the linux client seems to work as far as ipsec goes  
> for a bit.... however I can not access my internal network.
> 
> Server side I get the following.
> 
> Feb 10 14:58:33 defender pluto[7459]: "roadwarrior-l2tp"[24] 24.XX.XX. 
> 2X2 #215: STATE_QUICK_R2: IPsec SA established {ESP=>0x4594c98e  
> <0x2e34651a xfrm=AES_0-HMAC_SHA1 NATD=24.XX.XX.2X2:4500 DPD=none}
> 
> Then several minutes later I get
> 
> Feb 10 15:07:14 defender pluto[7459]: "roadwarrior-l2tp"[24] 24.XX.XX. 
> 2X2 #211: max number of retransmissions (20) reached STATE_QUICK_R1
> Feb 10 15:07:14 defender pluto[7459]: "roadwarrior-l2tp"[24] 24.XX.XX. 
> 2X2 #211: ERROR: netlink response for Del SA esp.5dfcc268 at 24.XX.XX.10  
> included errno 3: No such process
> 
> That seems to be the extent of it. While this connection is up I seem  
> to get the correct routing tables on both client and server. I need  
> to nail up this ipsec connect before I can begin messing around with  
> l2tpd and configs..
> 
> Is there anyway I can create a straight "road-warrior" type ipsec  
> connection for just linux clients and also keep my other settings  
> available for my windows users?
> 
> TIA
> 
> 
> 
> _______________________________________________
> Users mailing list
> Users at openswan.org
> http://lists.openswan.org/mailman/listinfo/users
> 




Thanks

- Nathan
- http://www.netdigix.com



More information about the Users mailing list