[Openswan Users] Unauthorized remote IP address

Paul Wouters paul at xelerance.com
Sat Mar 24 13:50:08 EDT 2007


On Sat, 24 Mar 2007, Jax wrote:

> I have a l2tp/ipsec vpn _CLIENT_ setup with the ipsec part already
> completed and working (Openswan+L2TPD as client). L2tp successfully
> authenticate but after that it drops the connection with:
>
> pppd[27766]: local  IP address 10.0.0.1
> pppd[27766]: remote IP address 10.20.30.1
> pppd[27766]: Script /etc/ppp/ip-up started (pid 5314)
> pppd[27766]: rcvd [IPCP TermReq id=0x2 "Unauthorized remote IP address"]
> pppd[27766]: IPCP terminated by peer (Unauthorized remote IP address)
>
> There are no  restrictions in chap-secrets or elsewhere. In l2tpd.conf
>
> access control = no
>
> So I just don't see how can I ignore this and force the connection. For
> second guess it caused by a mechanism in l2tpd which deny the connection
> if the LAN ip in the same subnet. Any ideas how can I solve this?

That's at the pppd level. Check if you enforce local and/or remote IP addresses
in your pppd options files anywhere.

Paul
-- 
Building and integrating Virtual Private Networks with Openswan:
http://www.amazon.com/gp/product/1904811256/104-3099591-2946327?n=283155


More information about the Users mailing list