[Openswan Users] Openswan + xl2tpd problem

Paul Wouters paul at xelerance.com
Tue Nov 6 16:31:46 EST 2007

On Tue, 6 Nov 2007, bigcahuna wrote:

> I have installed on server Openswan 2.4.6 on kernel 2.6.23
> with xl2tpd-1.1.12

You should upgrade to openswan 2.4.10, as some UDP checksum thing have been changed.

> I connect with this server from my laptop with Windows XP.
> The connection established OK only when I'm connected with my laptop from any network when i'm behind NAT, but when i get public IP from some ISP (e.g hotels) connection fails :(
> On the server logs I see that my IPsec connection is ok from behind NAT and from public IP
> STATE_QUICK_R2: IPsec SA established {ESP=>0xe44960b4
> but in logs xl2tpd I have error when try connect from public ip like that
> udp_xmit failed with err=-1:Operation not permitted
> udp_xmit failed with err=-1:Operation not permitted
> Nov  6 20:40:07 server xl2tpd[17625]: Unable to deliver closing message for tunnel 52530. Destroying anyway.

I have never seen these.
Are you using the pppol2tp kernel module? If so, try and disable it?
Are you using SElinux? If som try to disable that?

Building and integrating Virtual Private Networks with Openswan:

More information about the Users mailing list