[Openswan Users] Openswan and iphone L2TP/IPsec configuration example
alex at damhuis.de
Thu Nov 26 11:38:10 EST 2009
Just to confirm from my end - with the help you provided Paul, I can successfully connect. I had to use the recent GIT version and compile that under my Ubuntu 8.04 LTS.
What doesn't work is routing to the internet, but I fear this is a Plesk related issue and how the routes are set up. So I am off to research this now :)
Thanks a lot for the prompt help!
Am 26.11.2009 um 17:34 schrieb Paul Wouters:
> On Thu, 26 Nov 2009, Philipp Weirauch wrote:
>> so it al works now - i forgot to restart ipsec after installing rc4 :-)
>> but - the iphone no connects fine - i see the following in the log:
>> Nov 26 07:55:22 vpn ip-up: FATAL: Module ip_tables not found.
>> Nov 26 07:55:22 vpn ip-up: FATAL: Module ip_conntrack not found.
>> Nov 26 07:55:23 vpn SuSEfirewall2: batch committing...
>> Nov 26 07:55:23 vpn SuSEfirewall2: Firewall rules successfully set
>> Nov 26 07:55:23 vpn /etc/ppp/ip-up.d/freeswan: this script needs to be run from ip-up or ip-down
>> Nov 26 07:55:23 vpn pppd: Script /etc/ppp/ip-up finished (pid 6237), status = 0x0
>> Nov 26 07:55:28 vpn poll.tcpip: no server configured
>> Nov 26 07:55:29 vpn ip-up: postqueue: fatal: Cannot flush mail queue - mail system is down
>> do i have to worry about that?
> I doubt it. It's suse specific things though. Not sure what that "freeswan"
> thing does.
>> when i close the connection i get correct looking entries:
>> Nov 26 08:02:20 vpn pppd: rcvd [LCP EchoReq id=0x5 magic=0xf7cf945]
>> Nov 26 08:02:20 vpn pppd: sent [LCP EchoRep id=0x5 magic=0x187ebaf1]
>> Nov 26 08:02:24 vpn pppd: rcvd [LCP TermReq id=0x2 "User request"]
>> Nov 26 08:02:24 vpn pppd: LCP terminated by peer (User request)
>> Nov 26 08:02:24 vpn pppd: Connect time 7.1 minutes.
>> Nov 26 08:02:24 vpn pppd: Sent 127761 bytes, received 28605 bytes.
>> Nov 26 08:02:25 vpn pppd: Script /etc/ppp/ip-down started (pid 6466)
> Looks good.
> Users at openswan.org
> Building and Integrating Virtual Private Networks with Openswan:
More information about the Users