[Openswan Users] Openswan and iphone L2TP/IPsec configuration example

[Paul Wouters]

On Thu, 26 Nov 2009, Philipp Weirauch wrote:

> so it al works now - i forgot to restart ipsec after installing rc4 :-)

Good.

> but - the iphone no connects fine - i see the following in the log:
> Nov 26 07:55:22 vpn ip-up: FATAL: Module ip_tables not found.
> Nov 26 07:55:22 vpn ip-up: FATAL: Module ip_conntrack not found.
> Nov 26 07:55:23 vpn SuSEfirewall2: batch committing...
> Nov 26 07:55:23 vpn SuSEfirewall2: Firewall rules successfully set
> Nov 26 07:55:23 vpn /etc/ppp/ip-up.d/freeswan: this script needs to be run from ip-up or ip-down
> Nov 26 07:55:23 vpn pppd[6233]: Script /etc/ppp/ip-up finished (pid 6237), status = 0x0
> Nov 26 07:55:28 vpn poll.tcpip: no server configured
> Nov 26 07:55:29 vpn ip-up: postqueue: fatal: Cannot flush mail queue - mail system is down
>
> do i have to worry about that?

I doubt it. It's suse specific things though. Not sure what that "freeswan"
thing does.

> when i close the connection i get correct looking entries:
> Nov 26 08:02:20 vpn pppd[6233]: rcvd [LCP EchoReq id=0x5 magic=0xf7cf945]
> Nov 26 08:02:20 vpn pppd[6233]: sent [LCP EchoRep id=0x5 magic=0x187ebaf1]
> Nov 26 08:02:24 vpn pppd[6233]: rcvd [LCP TermReq id=0x2 "User request"]
> Nov 26 08:02:24 vpn pppd[6233]: LCP terminated by peer (User request)
> Nov 26 08:02:24 vpn pppd[6233]: Connect time 7.1 minutes.
> Nov 26 08:02:24 vpn pppd[6233]: Sent 127761 bytes, received 28605 bytes.
> Nov 26 08:02:25 vpn pppd[6233]: Script /etc/ppp/ip-down started (pid 6466)

Looks good.

Paul