[Openswan Users] [SUMMARY] Re: Problem with L2TP on Centos EL5

Oguz Yilmaz oguzyilmazlist at gmail.com
Thu Dec 25 05:38:26 EST 2008


I confirm, compiling openswan-2.4.13 taken from openswan.org for RHEL5
(Centos 5) solves the problem.
At the moment, I can connect l2tp from xp and vista and establish tunnels
rom other sites to my site.

kernel: 2.6.18-92.el5 RHEL
openswan-2.4.13

tested.
On Thu, Dec 25, 2008 at 9:37 AM, Oguz Yilmaz <oguzyilmazlist at gmail.com>wrote:

>
>
>  On Thu, Dec 25, 2008 at 6:36 AM, Paul Wouters <paul at xelerance.com> wrote:
>
>> On Wed, 24 Dec 2008, Oguz Yilmaz wrote:
>>
>> > Do you mean this bug is NOT fixed and blocks all RHEL5 versions from
>> > connecting L2TP clients?
>> > Can you show me the link for the bug in some bugzilla or mantis.
>>
>> http://bugs.xelerance.com/view.php?id=1004
>>
>> > What do you propose to do in that case? I can not change the distro. If
>> you
>> > know the kernel versions that fixed that bug, I can recompile the
>> kernel.
>>
>> You can try using openswan 2.4.13, or you can try compiling klips into
>> the rhel kernel but then you probably also need the nat-t patch because
>> your windows clients are behind nat.
>
>
>
> Does openswan 2.4.13 will work with the Netkey in vanilla 2.6.18-92.el5
> RHEL kernel? Do you think I need KLIPS?
>
>
>
>>
>>
>> > Can you propose to go with KLIPS? Is it known to be compiling in RHEL5
>> > kernel?
>>
>> redhat tends to push really recent kernels, but with rhel it might be
>> more stable then fedora, so it could work. I guess ideally we fix bug
>> 1004. The problem is that the wrong policy is injected in the kernel
>> (virtual ip instead of the real ip)
>>
>> Paul
>>
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.openswan.org/pipermail/users/attachments/20081225/bdf045f8/attachment-0001.html 


More information about the Users mailing list