[Openswan Users] Trouble with IPSEC/xl2tpd and multiple connections
The Adept
adept at stephans.org
Tue Feb 20 10:49:19 EST 2007
Jacco de Leeuw wrote:
>
>> This is where the problem likely occurs, I just do not know why:
>>
>> Feb 20 08:02:41 genvpn pluto[11354]: "roadwarrior"[4] 72.200.142.208
>> #15: deleting connection "roadwarrior-osx-xp" instance with peer
>> 68.178.85.200 {isakmp=#10/ipsec=#14}
>
> I don't see anything alarming in the Openswan logs but xl2tpd is
> reporting
> these errors:
>
> xl2tpd[11133]: Maximum retries exceeded for tunnel 35210. Closing.
> xl2tpd[11133]: Connection 1 closed to 68.178.85.200, port 1701 (Timeout)
> xl2tpd[11133]: get_call: can't find call 62984 in tunnel 35210 (ref=0/0)
> xl2tpd[11133]: Unable to deliver closing message for tunnel 35210.
> Destroying anyway.
> xl2tpd[11133]: Can not find tunnel 35210 (refhim=0)
> xl2tpd[11133]: network_thread: unable to find call or tunnel to handle
> packet. call = 62984, tunnel = 35210 Dumping.
>
> Also, there is mention of a conn roadwarrior-osx-xp but it's not in the
> ipsec.conf that you posted.
>
> Jacco
Current running config:
version 2.0 # conforms to second version of ipsec.conf specification
# basic configuration
config setup
interfaces=%defaultroute
nat_traversal=yes
virtual_private=%v4:10.0.0.0/8,%v4:!10.161.0.0/16,%v4:192.168.0.0/16,%v4:172.16.0.0/12
conn %default
keyingtries=3
compress=no
disablearrivalcheck=no
conn roadwarrior-osx-xp
leftprotoport=17/1701
rightprotoport=17/%any
rekey=no
also=roadwarrior
conn roadwarrior
right=%any
type=tunnel
pfs=no
rightsubnet=vhost:%no,%priv
authby=rsasig
leftrsasigkey=%cert
rightrsasigkey=%cert
left=%defaultroute
leftcert=vpn_cert.pem
auto=add
More information about the Users
mailing list