[Openswan Users] random l2tp/pppd failure
Paul Wouters
paul at xelerance.com
Sun Feb 19 20:34:18 CET 2006
On Sun, 19 Feb 2006, Agent Smith wrote:
> I had the same problem, I ended up writting a stupid
> script that kills the PPP process if the IP is not
> detected in ipsec eroute
>
> this worked well for a while until I found that
> sometimes when a client disconnects, the ipsec eroute
> shows either %hold or %trap and that doesn't clear by
> itself for rekey period.
That is fine, but it should vanish when the client reconnects
again, provided you have uniqueids=yes. (and rekey=no)
> you can try l2tpns its somewhat stable in my opinion,
> but then it doesn't do mschapv2 and also you'll still
> run into problems with ipsec eroute in %hold or %trap.
Also for you, did you try "xl2tpd" from Xelerance (or the Fedora
Extra "l2tpd")?
Paul
More information about the Users
mailing list