[Openswan Users] Problem with OpenSwan and l2tpd

Paul Wouters paul at xelerance.com
Mon Sep 14 10:45:48 EDT 2009


On Wed, 9 Sep 2009, vkirichenko wrote:

> Server OS
> CentOS release 5.3 (Final)
> Linux mail.gardena.ua 2.6.18-128.el5 #1 SMP Wed Jan 21 10:41:14 EST 2009
> x86_64 x86_64 x86_64 GNU/Linux
> Linux Openswan U2.6.14/K2.6.18-128.el5 (netkey)
> l2tpd - 0.69 with patch l2tpd-0.69.sysv.patch

You need to use openswan 2.4.x when using L2TP due to a bug in openswan 2.6.x.
l2tpd has not been actively developed in many years now. Use xl2tpd instead,
which is a fork/continuation of l2tpd.

> STATE_QUICK_R2: IPsec SA established tunnel mode {ESP=>0xf66fb121 <0x790ec3d2
> xfrm=3DES_0-HMAC_MD5 NATOA=192.168.250.251 NATD=62.64.75.14:4500 DPD=none}

This is good, but a wrong policy is inserted and therefor L2TP won't work.

Paul


More information about the Users mailing list