[Openswan Users] L2TP/IPSEC over PPP: IPSEC established, no traffic over ipsec0
Paul Wouters
paul at xelerance.com
Thu Nov 13 12:58:31 EST 2008
On Thu, 13 Nov 2008, Eduan Basson wrote:
> I've been struggling to make a VPN connection over a dial-up interface
> using openswan and KLIPS. This is from openswan/xl2tpd on Linux-2.4.27
> (including PPPOL2TP patch, I double checked) to Windows 2003 server.
>
> IPSEC looks like it establishes successfully:
> Nov 13 14:47:22 warn pluto[622]: "ipsec" #2: STATE_QUICK_I2: sent QI2,
> IPsec SA established {ESP=>0x35e351a7 <0x617b9d78 xfrm=3DES_0-HMAC_SHA1
> NATD=none DPD=none}
> If I ping my VPN server, a tcpdump on the client shows:
> # tcpdump -i ipsec0
> tcpdump: verbose output suppressed, use -v or -vv for full protocol decode
> listening on ipsec0, link-type LINUX_SLL (Linux cooked), capture size 68
> bytes
> 15:00:00.451318 IP 41.7.4.57 > 196.211.225.229: icmp 64: echo request seq 9
Well, ping is going outside the tunnel which is only for udp/1701 packets,
if you have configured it for l2tp/ipsec.
What do the xl2tpd logs say? Did the windows machine get a new IP assigned?
Paul
More information about the Users
mailing list