[Openswan Users] Openswan and OpenL2TP

coffee coffee_ccc at 163.com
Mon Dec 24 11:25:54 EST 2007


Hi all&Jacco
In today's test. We make Openswan work with OpenL2TP well. But I'm not sure is it right way? I do as follow:

Step 1:
In linux:
1. config Openswan(host to host mode)
In MS Windows:
2. write a Security Policy in "IP Security Policies on Local Computer" snap-in.
Then, ping Windows from Linux, but it's not able to get reply. Otherwise, from Windows, it'll get reply after one or two secs. Here Linux can ping Windows also. I don't know what's wrong?
Now, we've get IPsec SA.

Step 2:
In MS Windows:
1. configure "Route and remote access". Here the VPN Server is up.
In linux:
1. turn on the OpenL2TP without ipsec.so plugin.
2. restore config file that can create a tunnel and a session with peer addr.
Now, in linux, we could get ppp0 interface. The server can detect it as a client. From this result we consider OpenL2TP is working well.
So these two tools are separate working.

If we use Windows client, we'll need setup a connection and input name/passwd/PSK .etc. Then dialup. The L2TP/IPSec connection will establish. So I'm not sure in linux, we do
IPSec(we need manually creat SP in server at first, but to win client don't) and L2TP completely separate is a right method? 

Thanks&Regards

--
coffee




More information about the Users mailing list