[Openswan Users]

Jacco de Leeuw jacco2 at dds.nl
Mon Jan 30 17:43:46 CET 2006

Mike Rothon wrote:

> Openswan 2.3.0

You may need to upgrade because there were a lot of NAT-T fixes in 2.4.x.

> conn L2TP-PSK
>        authby=secret
>        pfs=no
>        rekey=no
>        keyingtries=3
>        left=
>        leftprotoport=17/1701

You may need leftnexthop=192.168.1.x (the internal IP address
of your DLink ADSL Router).

> Finally I have patched the WinXP SP2 client as discussed elsewhere.

There is also a patch for Openswan if the server is NATed in transport mode.
This has not been resolved in 2.4.5, if I'm correct:

Is there anything silly in the L2TP logs like an incorrect password which
causes the server to disconnect?

Jacco de Leeuw                         mailto:jacco2 at dds.nl
Zaandam, The Netherlands           http://www.jacco2.dds.nl

More information about the Users mailing list