[Openswan Users] *SOLVED* Trouble with IPSEC/xl2tpd and multiple connections

The Adept adept at stephans.org
Tue Feb 20 12:43:51 EST 2007


The Adept wrote:
> Paul Wouters wrote:
>   
>> On Tue, 20 Feb 2007, The Adept wrote:
>>
>>   
>>     
>>> Same problem.  I changed the type back to transport and installed .07  I can
>>> cleanly connect with a single client with no issues.  When a second client
>>> attaches the first connection is dropped by pluto and xl2tpd goes berzerk.
>>>     
>>>       
>> With berzerk you don't mean a 99% cpu loop right? Just that it disconnects/reconnects?
>>
>> If you want to try klips, we could confirm it is in handling with netkey
>> or netkey itself that things go wrong. And that it is not an xl2tpd issue.
>>
>> Paul
>>   
>>     
> After re-examining my logs for the millionth time it looks like my right 
> id is getting duplicated which is causing the connection to be whacked.  
> ID_DER_ASN1_DN appears to be the same for my different certs, which 
> would obviously cause the behaviour I'm seeing.  Will see if I can 
> figure that out.
>
> Dan
>
> _______________________________________________
> Users at openswan.org
> http://lists.openswan.org/mailman/listinfo/users
> Building and Integrating Virtual Private Networks with Openswan: 
> http://www.amazon.com/gp/product/1904811256/104-3099591-2946327?n=283155
>   
The DN duplication was indeed the problem.  Fixed that and all is smooth.

Thanks to everyone who offered advice!

Cheers,

  Dan



More information about the Users mailing list