[Openswan Users] Openswan and iphone L2TP/IPsec configuration example
Paul Wouters
paul at xelerance.com
Wed Nov 25 18:18:00 EST 2009
On Wed, 25 Nov 2009, Philipp Weirauch wrote:
> i used your config to connect with an iphone - only with different ips and passwords :-)
> and i get the following in my /var/log/messages:
>
> Nov 25 22:45:56 vpn pluto[19901]: "l2tp-psk"[4] 80.187.101.1 #2755: transition from state STATE_QUICK_R1 to state STATE_QUICK_R2
> Nov 25 22:45:56 vpn pluto[19901]: "l2tp-psk"[4] 80.187.101.1 #2755: STATE_QUICK_R2: IPsec SA established transport mode {ESP=>0x07bf04b4 <0x6b2e7b9d xfrm=AES_128-HMAC_SHA1 NATOA=none NATD=none DPD=none}
> Nov 25 22:45:58 vpn xl2tpd[3198]: get_call: allocating new tunnel for host 80.187.101.1, port 49166.
> Nov 25 22:45:58 vpn xl2tpd[3198]: control_finish: Peer requested tunnel 3 twice, ignoring second one.
> Nov 25 22:45:58 vpn xl2tpd[3198]: build_fdset: closing down tunnel 49666
> Nov 25 22:45:59 vpn xl2tpd[3198]: get_call: allocating new tunnel for host 80.187.101.1, port 49166.
> Nov 25 22:45:59 vpn xl2tpd[3198]: control_finish: Peer requested tunnel 3 twice, ignoring second one.
> Nov 25 22:45:59 vpn xl2tpd[3198]: build_fdset: closing down tunnel 26668
> Nov 25 22:45:59 vpn xl2tpd[3198]: network_thread: select timeout
Are you using NETKEY or KLIPS? In my case I was using NETKEY
What version of xl2tpd? I was using 1.2.4.
Did you set the MTU to 1472 on the public interface?
Paul
More information about the Users
mailing list