[Openswan Users] l2tp/ipsec not working with nat?

Jacco de Leeuw jacco2 at dds.nl
Tue Jan 8 16:46:38 EST 2008

Abraham Iglesias wrote:

> I'm trying to establish a l2tp/ipsec tunel with windows xp sp2 and RHEL4 
>   A.B.C.D (ADSL router wich forwards all packets to

So the server is behind NAT. Did you apply the registry patch to XP?

> conn roadwarriors
>         left=

You also need a leftnexthop=192.168.1.x (the internal IP address of
the ADSL router).

>         leftprotoport=17/0

Could you try with leftprotoport=17/1701? AFAIK the only clients that
want leftprotoport=17/0 are non-updated Windows 2000/XP clients, and
these don't support NAT-T anyway.

Jacco de Leeuw                         mailto:jacco2 at dds.nl
Zaandam, The Netherlands           http://www.jacco2.dds.nl

More information about the Users mailing list