[Openswan Users] Openswan and iphone L2TP/IPsec configuration example
Alexander Damhuis
alex at damhuis.de
Thu Nov 26 11:38:10 EST 2009
Just to confirm from my end - with the help you provided Paul, I can successfully connect. I had to use the recent GIT version and compile that under my Ubuntu 8.04 LTS.
What doesn't work is routing to the internet, but I fear this is a Plesk related issue and how the routes are set up. So I am off to research this now :)
Thanks a lot for the prompt help!
Kind regards,
Alexander
Am 26.11.2009 um 17:34 schrieb Paul Wouters:
> On Thu, 26 Nov 2009, Philipp Weirauch wrote:
>
>> so it al works now - i forgot to restart ipsec after installing rc4 :-)
>
> Good.
>
>> but - the iphone no connects fine - i see the following in the log:
>> Nov 26 07:55:22 vpn ip-up: FATAL: Module ip_tables not found.
>> Nov 26 07:55:22 vpn ip-up: FATAL: Module ip_conntrack not found.
>> Nov 26 07:55:23 vpn SuSEfirewall2: batch committing...
>> Nov 26 07:55:23 vpn SuSEfirewall2: Firewall rules successfully set
>> Nov 26 07:55:23 vpn /etc/ppp/ip-up.d/freeswan: this script needs to be run from ip-up or ip-down
>> Nov 26 07:55:23 vpn pppd[6233]: Script /etc/ppp/ip-up finished (pid 6237), status = 0x0
>> Nov 26 07:55:28 vpn poll.tcpip: no server configured
>> Nov 26 07:55:29 vpn ip-up: postqueue: fatal: Cannot flush mail queue - mail system is down
>>
>> do i have to worry about that?
>
> I doubt it. It's suse specific things though. Not sure what that "freeswan"
> thing does.
>
>> when i close the connection i get correct looking entries:
>> Nov 26 08:02:20 vpn pppd[6233]: rcvd [LCP EchoReq id=0x5 magic=0xf7cf945]
>> Nov 26 08:02:20 vpn pppd[6233]: sent [LCP EchoRep id=0x5 magic=0x187ebaf1]
>> Nov 26 08:02:24 vpn pppd[6233]: rcvd [LCP TermReq id=0x2 "User request"]
>> Nov 26 08:02:24 vpn pppd[6233]: LCP terminated by peer (User request)
>> Nov 26 08:02:24 vpn pppd[6233]: Connect time 7.1 minutes.
>> Nov 26 08:02:24 vpn pppd[6233]: Sent 127761 bytes, received 28605 bytes.
>> Nov 26 08:02:25 vpn pppd[6233]: Script /etc/ppp/ip-down started (pid 6466)
>
> Looks good.
>
> Paul
> _______________________________________________
> Users at openswan.org
> http://lists.openswan.org/mailman/listinfo/users
> Building and Integrating Virtual Private Networks with Openswan:
> http://www.amazon.com/gp/product/1904811256/104-3099591-2946327?n=283155
More information about the Users
mailing list