[Openswan Users] Mac OS X Roadwarrior IPSEC/L2TP fails second connection
alester at free.fr
Thu Mar 18 15:49:08 EDT 2010
I have set up a IPSEC/L2TP VPN server using Openswan 2.6.24 and xl2tpd
1.2.4 on a machine in my home network which is behind a NAT router. I
then try to connect from a Mac OS X laptop on a public WiFi network.
The first connection works fine, but if I disconnect then try to
reconnect, I get a message that there is no reply from the server. If
I then restart ipsec on the server, I can connect again.
After analyzing logs on both sides and looking at tcpdump results it
seems that when the connection fails the L2TP negotiation is not
working. Specifically the SCCRP reply from the server is being sent to
the client unencrypted (i.e. not through the IPSEC connection) and so
it is not seen by the client.
Anybody any ideas?
My configuration is as follows:
+ all the auto=ignore stuff to disable oe
More information about the Users