[Openswan Users] IP address assignment through xl2tpd

Paul Wouters paul at xelerance.com
Thu Dec 2 23:49:03 EST 2010

On Thu, 2 Dec 2010, alet at librelogiciel.com wrote:

> Currently my Openswan + xl2tpd gateway assigns IP addresses to clients
> in a specific range.
> For a particular client, for which I must create some very specific
> filtering rules, I'd like xl2tpd to always assign the same IP address.
> So I'm planning to reduce the "ip range" in xl2tpd.conf to not include
> this particular IP address, but then how do I configure xl2tpd to have a
> second lns section which only applies to a particular client, known at
> connection time only by a specific PAP username and X.509 certificate
> (unfortunately the client IP address will vary) ?

You can specify this in /etc/ppp/chap-secrets. So in xl2tpd.conf you put:

ip range =

then for your user, you put in chap-secrets:

paul           *       "password"    
*               paul   "password"    


More information about the Users mailing list