[Openswan Users] ipsec works for the first connection but then fails after that

Schley Andrew Kutz akutz at lostcreations.com
Tue Dec 4 11:31:49 EST 2007


Okay, I've upgraded to openswan 2.4.10 and xl2tpd at the advice of  
those on the IRC channel and no joy. WTF mate?!?

-- 
-a


On Dec 3, 2007, at 5:17 PM, Schley Andrew Kutz wrote:

> I've implemented a temporary fix where I restart ipsec in the ppp ip- 
> down script (run whens the clients disconnect).
>
> -- 
> -a
>
>
> On Dec 3, 2007, at 4:34 PM, Schley Andrew Kutz wrote:
>
>> I can connect from my MacBook Pro 15" OS X 10.5.1 Leopard road  
>> warrior to my Ubuntu 7.04 Feisty Fawn 64-bit OpenSwan server with  
>> L2TPD using PSKs perfectly the first time after I start the ipsec  
>> daemon. However, all subsequent connections fail until I restart  
>> the daemon.
>>
>> Help!
>>
>> My logs and configuration files are posted on http://www.lostcreations.com/~akutz/openswan_no_workie/index.html
>>
>> I have seemed to narrow the problem down to this: the ipsec daemon  
>> cannot communicate with l2tpd after the first connection. If I  
>> restart ipsec and stop l2tpd I get the same error I am getting on  
>> subsequent connections. However, restarting l2tpd does not seem to  
>> be enough, I *have* to restart ipsec. I don't even have to restart  
>> l2tpd too, just ipsec.
>>
>> Ugh.
>>
>> Help! (I said it once, twice can't hurt, right? Oh wait, doing  
>> something twice successfully is why I'm posting in the first place)
>>
>> -- 
>> -a
>>
>>
>> _______________________________________________
>> Users at openswan.org
>> http://lists.openswan.org/mailman/listinfo/users
>> Building and Integrating Virtual Private Networks with Openswan:
>> http://www.amazon.com/gp/product/1904811256/104-3099591-2946327?n=283155
>

-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 2620 bytes
Desc: not available
Url : http://lists.openswan.org/pipermail/users/attachments/20071204/96cf1279/attachment-0001.bin 


More information about the Users mailing list