[Openswan Users] IPsec+L2TP connects the first time. Then doesn't...

Troy Telford ttelford.groups at gmail.com
Sat Sep 11 00:40:23 EDT 2010 

I'm running a Debian (sid) Linux system, using Openswan an xl2tpd.

When I connect from test client machine (Running OS X 10.6; I haven't 
tried Windows 7 yet...), I am able to connect the first time.

Subsequent attempts to connect are met with failure:

IPsec reports "IPsec SA established transport mode" - which I take to 
be a good thing...

However, xl2tpd doesn't seem to play nicely...

Sep 10 22:07:38 mygateway xl2tpd[6927]: get_call: allocating new tunnel 
for host www.xxx.yyy.zzz, port 59365.
Sep 10 22:07:40 mygateway xl2tpd[6927]: build_fdset: closing down tunnel 38927
Sep 10 22:07:40 mygateway xl2tpd[6927]: get_call: allocating new tunnel 
for host www.xxx.yyy.zzz, port 59365.
Sep 10 22:07:40 mygateway xl2tpd[6927]: control_finish: Peer requested 
tunnel 1 twice, ignoring second one.
Sep 10 22:07:40 mygateway xl2tpd[6927]: build_fdset: closing down tunnel 42695
Sep 10 22:07:41 mygateway xl2tpd[6927]: get_call: allocating new tunnel 
for host www.xxx.yyy.zzz, port 59365.
Sep 10 22:07:41 mygateway xl2tpd[6927]: control_finish: Peer requested 
tunnel 1 twice, ignoring second one.
Sep 10 22:07:41 mygateway xl2tpd[6927]: build_fdset: closing down tunnel 56715
Sep 10 22:07:45 mygateway xl2tpd[6927]: get_call: allocating new tunnel 
for host www.xxx.yyy.zzz, port 59365.
Sep 10 22:07:45 mygateway xl2tpd[6927]: control_finish: Peer requested 
tunnel 1 twice, ignoring second one.
Sep 10 22:07:45 mygateway xl2tpd[6927]: build_fdset: closing down tunnel 28646
Sep 10 22:07:45 mygateway xl2tpd[6927]: Maximum retries exceeded for 
tunnel 18835.  Closing.
Sep 10 22:07:53 mygateway xl2tpd[6927]: get_call: allocating new tunnel 
for host www.xxx.yyy.zzz, port 59365.
Sep 10 22:07:53 mygateway xl2tpd[6927]: control_finish: Peer requested 
tunnel 1 twice, ignoring second one.
Sep 10 22:07:53 mygateway xl2tpd[6927]: build_fdset: closing down tunnel 46859
Sep 10 22:07:53 mygateway xl2tpd[6927]: build_fdset: closing down tunnel 18835
Sep 10 22:07:53 mygateway xl2tpd[6927]: Connection 1 closed to 
www.xxx.yyy.zzz, port 59365 (Timeout)
Sep 10 22:07:58 mygateway xl2tpd[6927]: Unable to deliver closing 
message for tunnel 18835. Destroying anyway.

If I run /etc/init.d/ipsec restart, I am able to connect again - once.

My configuration is in a thread a few days old:  "xl2tpd not responding 
- why?", so I'll try to save some space and not repost it.

Thanks.
-- 
Troy Telford

More information about the Users mailing list