[Openswan Users] malloc 0 bytes and tunnel not found

Heiko --- tomtegubbar99 at yahoo.de
Tue Sep 16 04:11:23 EDT 2008 

Hello Paul




> I am not sure if you can work properly behind a port forward, and also hand
> out IP addresses. I've never tried it, though I guess it might work.

I tried "assign ip=no" and configured 192.168.77.10 as a static ip on my xp-box. Still the tunnel not found error.


> What is in your /etc/ppp/chap-secrets? Something like:

> username    *    "secret"    192.168.77.10
> *        username "secret"    192.168.77.10

Yes, exactly.

I added the "debug tunnel" and "debug network" options and tried my configs again. In all cases I get:

Sep 16 09:53:06 linuxbox pluto[6160]: "myL2TP-PSK"[1] 192.168.79.51 #2: STATE_QUICK_R2: IPsec SA established tunnel mode {ESP=>0xb4f438a7 <0x8f3b1106 xfrm=3DES_0-HMAC_MD5 NATOA=<invalid> NATD=<invalid>:500 DPD=enabled}
 pluto[6160]: | modecfg pull: noquirk policy:push not-client
 pluto[6160]: | phase 1 is done, looking for phase 2 to unpend
 pluto[6160]: | * processed 0 messages from cryptographic helpers
 pluto[6160]: | next event EVENT_NAT_T_KEEPALIVE in 20 seconds
 xl2tpd[5805]: network_thread: recv packet from 192.168.79.51, size = 98, tunnel = 0, call = 0 ref=0 refhim=0
 linuxbox xl2tpd[5805]: get_call: allocating new tunnel for host 192.168.79.51, port 1701.
 linuxbox xl2tpd[5805]: control_finish: Peer requested tunnel 8 twice, ignoring second one.
 linuxbox xl2tpd[5805]: build_fdset: closing down tunnel 58998
 linuxbox xl2tpd[5805]: network_thread: recv packet from 192.168.79.51, size = 20, tunnel = 34948, call = 0 ref=0 refhim=0
 linuxbox xl2tpd[5805]: Connection established to 192.168.79.51, 1701.  Local: 34948, Remote: 8 (ref=0/0).  LNS session is 'default'
 xl2tpd[5805]: network_thread: recv packet from 192.168.79.51, size = 48, tunnel = 34948, call = 0 ref=0 refhim=0
 xl2tpd[5805]: network_thread: recv packet from 192.168.79.51, size = 12, tunnel = 34948, call = 0 ref=0 refhim=0
 xl2tpd[5805]: network_thread: recv packet from 192.168.79.51, size = 38, tunnel = 34948, call = 0 ref=0 refhim=0
 xl2tpd[5805]: control_finish: Connection closed to 192.168.79.51, port 1701 (), Local: 34948, Remote: 8
 xl2tpd[5805]: build_fdset: closing down tunnel 34948
 xl2tpd[5805]: network_thread: recv packet from 192.168.79.51, size = 48, tunnel = 34948, call = 38361 ref=0 refhim=0
 xl2tpd[5805]: Can not find tunnel 34948 (refhim=0)
 xl2tpd[5805]: network_thread: unable to find call or tunnel to handle packet.  call = 38361, tunnel = 34948 Dumping.

I found hints that XP's IPSec/L2TP doesn't work like described in the RFCs. So I added the AssumeUDPEncapsulationContextOnSendRule with 0x02. But I think that the error is somewhere in my configs or my testbed itself...

Heiko

__________________________________________________
Do You Yahoo!?
Sie sind Spam leid? Yahoo! Mail verfügt über einen herausragenden Schutz gegen Massenmails. 
http://mail.yahoo.com

More information about the Users mailing list