[Openswan Users] win-xp (sp2) with nat-t not working with dsl

Gbenga stjames08 at yahoo.co.uk
Sun Nov 5 16:33:42 EST 2006

Hi all,

Thanks Paul for your response.

Just reporting back on this. kernel didn't fix it either :-( Same error messages.

I would love to hear from someone that has got this working before. If you want my firewall entries on the nat device, I will post. It is iptables box.


----- Original Message ----
From: Paul Wouters <paul at xelerance.com>
To: Gbenga <stjames08 at yahoo.co.uk>
Cc: users at openswan.org
Sent: Sunday, 5 November, 2006 7:17:23 PM
Subject: Re: [Openswan Users] win-xp (sp2) with nat-t not working with dsl

On Sun, 5 Nov 2006, Gbenga wrote:

> Apologies for coming back late on this, but it is still not working for me. I have changed all the options I think is that were suggested on the list without success. I've also upgraded to the latest xl2tpd (v1.1.05). no success yet.

Note that the 1.1.05 release is broken. We will release 1.1.06 on monday.


> It was mentioned on somewhere by Jacco that he has never had luck using kernel 2.6 with l2tpd - rw, so I have configure a kernel version with all the necessary patches. I will report back on my adventure.

We did not test NETKEY with xl2tpd.

> One strange thing I noted in the auth.log is that: Nov  5 00:03:26 aparo pluto[16992]: "l2tp-syseng"[4] #93: STATE_QUICK_R2: IPsec SA established {ESP=>0x43f2cdc5 <0x02450523 xfrm=3DES_0-HMAC_MD5 NATD= DPD=none}
> "NATD=" !!! this is point to port other than 4500.

The source port is a random high port on OSX and unpatched Windows XP machines. You
will have to use rightprotoport=17/%any, but that might not exactly work either (this
is a known bug we're working on).


Send instant messages to your online friends http://uk.messenger.yahoo.com 
-------------- next part --------------
An embedded and charset-unspecified text was scrubbed...
Name: l2tp.txt
Url: http://lists.openswan.org/pipermail/users/attachments/20061105/e42287d0/attachment.txt 

More information about the Users mailing list