[Openswan Users] cannot respond to IPsec SA request because no connection is known for

Jacco de Leeuw jacco2 at dds.nl
Tue Jan 29 18:07:02 EST 2008

Sebastian McDonagh wrote:

> One thing to note though is when i try to connect through a windows xp client 
> l2tp not natted i get the same error message.

You are connecting to the server on, but left=%defaultroute is
at So Openswan ignores this.

I suppose if you use:

conn roadwarrior-l2tp-updatedwin

it should work, but is an internal network, presumably.
So you probably do want to use left=%defaultroute, but then you need to
connect with a client from an external location.

You might also need to exclude all your internal subnets in virtual_private=.
I would also suggest removing 'conn roadwarrior-l2tp' and tell people to
install the Windows 2000/XP NAT-T update, XP SP2 or Vista.

Jacco de Leeuw                         mailto:jacco2 at dds.nl
Zaandam, The Netherlands           http://www.jacco2.dds.nl

More information about the Users mailing list