[Openswan Users] random l2tp/pppd failure

Paul Wouters paul at xelerance.com
Sun Feb 19 20:34:18 CET 2006


On Sun, 19 Feb 2006, Agent Smith wrote:

> I had the same problem, I ended up writting a stupid
> script that kills the PPP process if the IP is not
> detected in ipsec eroute
>
> this worked well for a while until I found that
> sometimes when a client disconnects, the ipsec eroute
> shows either %hold or %trap and that doesn't clear by
> itself for rekey period.

That is fine, but it should vanish when the client reconnects
again, provided you have uniqueids=yes. (and rekey=no)

> you can try l2tpns its somewhat stable in my opinion,
> but then it doesn't do mschapv2 and also you'll still
> run into problems with ipsec eroute in %hold or %trap.

Also for you, did you try "xl2tpd" from Xelerance (or the Fedora
Extra "l2tpd")?

Paul


More information about the Users mailing list