[Openswan Users] WinXP Roadwarrior cannot connect to xl2tpd
Paul Wouters
paul at xelerance.com
Wed Nov 8 11:09:01 EST 2006
On Tue, 7 Nov 2006, Jacco de Leeuw wrote:
> > I am trying to connect my Home workstation(WinXP for testing,
> > NATed behind my openswan gateway) to the network at
> > work using openswan(netkey), xl2tpd 1.04 and certificates.
> >
> > conn khdn-rw
> > right=%any
> > rightsubnet=vhost:%priv,%no
> > rightprotoport=17/%any
>
> Could you try with rightprotoport=17/1701? For some reason the
> combination of the three lines above results in L2TP packets
> being sent in the clear (Paul?).
I think it is the leftnexthop=gatewayip that is causing this connection
to fail, and i do think it is because of the 17/%any. There is an
outstanding bug report on this.
Paul
> Unfortunately this change means that MacOS X clients are excluded.
> Do you use Macs?
>
> > dpddelay=60
> > dpdtimeout=240
> > dpdaction=clear
>
> By the way, this won't work with Windows and Mac clients because
> they don't support Dead Peer Detection. It will be ignored but if
> you also have Linux L2TP/IPsec clients it could be of use.
>
> Jacco
>
--
Building and integrating Virtual Private Networks with Openswan:
http://www.amazon.com/gp/product/1904811256/104-3099591-2946327?n=283155
More information about the Users
mailing list