[Openswan Users] RES: RES: RES: L2TP IPSEC and Windows XP

Tue Mar 11 10:32:13 EDT 2008

I connected the same laptop in 3 different internet links, each one with a
different network.

The situations was described below, when I referred to VPN Fails, means that
the connection start, accept certificates, but broke by timeout.

Look the messages with the error.

Feb 29 17:58:21 TEXVPNPROXY pluto[1537]: "roadwarrior-l2tp"[26]
189.19.53.225 #68: responding to Quick Mode {msgid:01000000} Feb 29 17:58:21
TEXVPNPROXY pluto[1537]: "roadwarrior-l2tp"[26] 189.19.53.225 #68:
transition from state STATE_QUICK_R0 to state STATE_QUICK_R1 Feb 29 17:58:21
TEXVPNPROXY pluto[1537]: "roadwarrior-l2tp"[26] 189.19.53.225 #68:
STATE_QUICK_R1: sent QR1, inbound IPsec SA installed, expecting QI2 Feb 29
17:58:21 TEXVPNPROXY pluto[1537]: "roadwarrior-l2tp"[26] 189.19.53.225 #68:
transition from state STATE_QUICK_R1 to state STATE_QUICK_R2 Feb 29 17:58:21
TEXVPNPROXY pluto[1537]: "roadwarrior-l2tp"[26] 189.19.53.225 #68:
STATE_QUICK_R2: IPsec SA established {ESP=>0x8b2f2a27 <0x341fd109
xfrm=AES_128-HMAC_SHA1 NATD=none DPD=none} Feb 29 17:58:56 TEXVPNPROXY
pluto[1537]: "roadwarrior-l2tp"[26] 189.19.53.225 #67: received Delete
SA(0x8b2f2a27) payload: deleting IPSEC State #68 Feb 29 17:58:56 TEXVPNPROXY
pluto[1537]: "roadwarrior-l2tp"[26] 189.19.53.225 #67: received and ignored
informational message Feb 29 17:58:56 TEXVPNPROXY pluto[1537]:
"roadwarrior-l2tp"[26] 189.19.53.225 #67: received Delete SA payload:
deleting ISAKMP State #67 Feb 29 17:58:56 TEXVPNPROXY pluto[1537]:
"roadwarrior-l2tp"[26] 189.19.53.225: deleting connection "roadwarrior-l2tp"
instance with peer 200.200.200.225 {isakmp=#0/ipsec=#0} Feb 29 17:58:56
TEXVPNPROXY pluto[1537]: packet from 189.19.53.225:500: received and ignored
informational message.

When I do the connection from a network that start with 200.XXX.XXX.XXX, VPN
works fine, but in other network doesn´t work.

Can I explain better now?

Thanks.

André

-----Mensagem original-----
De: users-bounces at openswan.org [mailto:users-bounces at openswan.org] Em nome
de Jacco de Leeuw
Enviada em: quinta-feira, 6 de março de 2008 19:34
Para: users at openswan.org
Assunto: Re: [Openswan Users] RES: RES: L2TP IPSEC and Windows XP

André Mendes - WAITS wrote:

> I noticed other thing... I tested the VPN in 3 different connections, each
> one with a different network, using the same laptop with the Windows XP.
The
> result was:
> 
> Network 1 - 200.xxx.xxx.xxx - VPN works fine
> Network 2 - 201.xxx.xxx.xxx - VPN fails
> Network 3 - 189.xxx.xxx.xxx - VPN fails
> 
> I used tcpdump to look the traffic and I noticed that Openswan Server
answer
> the first connection, but after same time it stop to answer the requests
> from client.

Sorry, I don't understand. Are trying to connect with three laptops
simultaneously using the same client certificate? "VPN fails" is not
clear enough.

Jacco
-- 
Jacco de Leeuw                         mailto:jacco2 at dds.nl
Zaandam, The Netherlands           http://www.jacco2.dds.nl
_______________________________________________
Users at openswan.org
http://lists.openswan.org/mailman/listinfo/users
Building and Integrating Virtual Private Networks with Openswan: 
http://www.amazon.com/gp/product/1904811256/104-3099591-2946327?n=283155