[Openswan Users] Failure in connecting Openswan/L2TPD server on linux from client offered by windows xp

lizhong lizhong at ncic.ac.cn
Fri Jul 7 19:17:59 CEST 2006 

Hi,
    I am a beginner of Openswan.I tried to connect my openswan server on a machine running linux from another machine running windows XP, and the error message 31 was generated by windows. Could anyont tell me the reason? Thank you!

    This is my Ipsec.conf:

conn L2TP-TEST
        authby=secret
        pfs=no
        rekey=no
        keyingtries=3

        left=192.168.10.2
        right=%any
        rightprotoport=17/%any
        auto=add


    And this is my l2tpd.conf:
[global] ; Global parameters:
auth file = /etc/ppp/chap-secrets ;

[lns default]
ip range = 192.168.10.128-192.168.10.254
local ip = 192.168.10.3
require chap = yes
refuse pap = yes
require authentication = yes
name = LinuxVPNserver
ppp debug = yes
pppoptfile = /etc/ppp/options.l2tpd
length bit = yes

    The infomation in /var/log/secure :

Jul  7 18:42:15 gcnode028 pluto[27957]: packet from 10.10.21.159:500: ignoring Vendor ID payload [MS NT5 ISAKMPOAKLEY 00000004]
Jul  7 18:42:15 gcnode028 pluto[27957]: packet from 10.10.21.159:500: ignoring Vendor ID payload [FRAGMENTATION]
Jul  7 18:42:15 gcnode028 pluto[27957]: packet from 10.10.21.159:500: received Vendor ID payload [draft-ietf-ipsec-nat-t-ike-02_n] meth=106, but port floating is off
Jul  7 18:42:15 gcnode028 pluto[27957]: packet from 10.10.21.159:500: ignoring Vendor ID payload [Vid-Initial-Contact]
Jul  7 18:42:15 gcnode028 pluto[27957]: "L2TP-TEST"[14] 10.10.21.159 #62: responding to Main Mode from unknown peer 10.10.21.159
Jul  7 18:42:15 gcnode028 pluto[27957]: "L2TP-TEST"[14] 10.10.21.159 #62: transition from state STATE_MAIN_R0 to state STATE_MAIN_R1
Jul  7 18:42:15 gcnode028 pluto[27957]: "L2TP-TEST"[14] 10.10.21.159 #62: STATE_MAIN_R1: sent MR1, expecting MI2
Jul  7 18:42:15 gcnode028 pluto[27957]: "L2TP-TEST"[14] 10.10.21.159 #62: transition from state STATE_MAIN_R1 to state STATE_MAIN_R2
Jul  7 18:42:15 gcnode028 pluto[27957]: "L2TP-TEST"[14] 10.10.21.159 #62: STATE_MAIN_R2: sent MR2, expecting MI3
Jul  7 18:42:15 gcnode028 pluto[27957]: "L2TP-TEST"[14] 10.10.21.159 #62: Main mode peer ID is ID_IPV4_ADDR: '10.10.21.159'
Jul  7 18:42:15 gcnode028 pluto[27957]: "L2TP-TEST"[14] 10.10.21.159 #62: I did not send a certificate because I do not have one.
Jul  7 18:42:15 gcnode028 pluto[27957]: "L2TP-TEST"[14] 10.10.21.159 #62: transition from state STATE_MAIN_R2 to state STATE_MAIN_R3
Jul  7 18:42:15 gcnode028 pluto[27957]: "L2TP-TEST"[14] 10.10.21.159 #62: STATE_MAIN_R3: sent MR3, ISAKMP SA established {auth=OAKLEY_PRESHARED_KEY cipher=oakley_3des_cbc_192 prf=oakley_sha group=modp2048}
Jul  7 18:42:15 gcnode028 pluto[27957]: "L2TP-TEST"[14] 10.10.21.159 #63: responding to Quick Mode {msgid:9beeb0e3}
Jul  7 18:42:15 gcnode028 pluto[27957]: "L2TP-TEST"[14] 10.10.21.159 #63: transition from state STATE_QUICK_R0 to state STATE_QUICK_R1
Jul  7 18:42:15 gcnode028 pluto[27957]: "L2TP-TEST"[14] 10.10.21.159 #63: STATE_QUICK_R1: sent QR1, inbound IPsec SA installed, expecting QI2
Jul  7 18:42:15 gcnode028 pluto[27957]: "L2TP-TEST"[14] 10.10.21.159 #63: up-host output: Cannot open "/proc/sys/net/ipv4/route/flush"
Jul  7 18:42:15 gcnode028 pluto[27957]: "L2TP-TEST"[14] 10.10.21.159 #63: route-host output: Cannot open "/proc/sys/net/ipv4/route/flush"
Jul  7 18:42:15 gcnode028 pluto[27957]: "L2TP-TEST"[14] 10.10.21.159 #63: transition from state STATE_QUICK_R1 to state STATE_QUICK_R2
Jul  7 18:42:15 gcnode028 pluto[27957]: "L2TP-TEST"[14] 10.10.21.159 #63: STATE_QUICK_R2: IPsec SA established {ESP=>0x5c0d0845 <0x1f888d36 xfrm=3DES_0-HMAC_MD5 NATD=none DPD=none}
Jul  7 18:42:18 gcnode028 pluto[27957]: "L2TP-TEST"[14] 10.10.21.159 #62: received Delete SA(0x5c0d0845) payload: deleting IPSEC State #63
Jul  7 18:42:19 gcnode028 pluto[27957]: "L2TP-TEST"[14] 10.10.21.159 #63: unroute-host output: Cannot open "/proc/sys/net/ipv4/route/flush"
Jul  7 18:42:19 gcnode028 pluto[27957]: "L2TP-TEST"[14] 10.10.21.159 #62: received and ignored informational message
Jul  7 18:42:19 gcnode028 pluto[27957]: "L2TP-TEST"[14] 10.10.21.159 #62: received Delete SA payload: deleting ISAKMP State #62
Jul  7 18:42:19 gcnode028 pluto[27957]: packet from 10.10.21.159:500: received and ignored informational message
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.openswan.org/pipermail/users/attachments/20060707/1d4cdedd/attachment.htm

More information about the Users mailing list