[Openswan Users] Help - Connection always dropped after around 2 minutes
Stefanus Hartanto
tetepppp at yahoo.com
Fri Nov 25 19:38:30 EST 2011
Hi,
I use Fedora 16, and installopenswan-2.6.36-1.fc16 (64 bit) and xl2tpd-1.3.1-1.fc16 (64 bit).
I connect to VPN server using iphone.
I can established a connection to the VPN server access my LAN but after around 2 minutes, the connection is always drop.
In the log I see:
Nov 26 08:24:45 PC001 xl2tpd[4609]: Connection established to 111.65.28.11, 60697. Local: 51059, Remote: 28 (ref=0/0). LNS session is 'default'
Nov 26 08:24:46 PC001 xl2tpd[4609]: Call established with 111.65.28.11, Local: 39779, Remote: 705, Serial: 1
Nov 26 08:24:46 PC001 pppd[7310]: pppd 2.4.5 started by root, uid 0
Nov 26 08:24:46 PC001 pppd[7310]: Using interface ppp0
Nov 26 08:24:46 PC001 pppd[7310]: Connect: ppp0 <--> /dev/pts/2
Nov 26 08:24:47 PC001 pppd[7310]: Unsupported protocol 'IPv6 Control Protocol' (0x8057) received
Nov 26 08:24:47 PC001 pppd[7310]: found interface p4p1 for proxy arp
Nov 26 08:24:47 PC001 pppd[7310]: local IP address 192.168.1.9
Nov 26 08:24:47 PC001 pppd[7310]: remote IP address 192.168.1.128
Nov 26 08:26:50 PC001 xl2tpd[4609]: Maximum retries exceeded for tunnel 51059. Closing.
Nov 26 08:26:50 PC001 pppd[7310]: Modem hangup
Nov 26 08:26:50 PC001 pppd[7310]: Connect time 2.1 minutes.
Nov 26 08:26:50 PC001 pppd[7310]: Sent 693038 bytes, received 36984 bytes.
Nov 26 08:26:50 PC001 xl2tpd[4609]: Connection 28 closed to 111.65.28.11, port 60697 (Timeout)
Nov 26 08:26:50 PC001 avahi-daemon[827]: Withdrawing workstation service for ppp0.
Nov 26 08:26:57 PC001 xl2tpd[4609]: Can not find tunnel 51059 (refhim=0)
Nov 26 08:26:58 PC001 xl2tpd[4609]: Can not find tunnel 51059 (refhim=0)
Nov 26 08:26:58 PC001 xl2tpd[4609]: Can not find tunnel 51059 (refhim=0)
Nov 26 08:27:01 PC001 xl2tpd[4609]: Can not find tunnel 51059 (refhim=0)
Nov 26 08:27:06 PC001 xl2tpd[4609]: Can not find tunnel 51059 (refhim=0)
Nov 26 08:27:12 PC001 xl2tpd[4609]: Can not find tunnel 51059 (refhim=0)
Nov 26 08:27:13 PC001 xl2tpd[4609]: Can not find tunnel 51059 (refhim=0)
Nov 26 08:27:13 PC001 xl2tpd[4609]: Can not find tunnel 51059 (refhim=0)
My VPN server is behind Router Firewall
The VPN server IP is 192.168.1.9
Here is my setting:
/etc/ipsec.conf
-----------
nat_traversal=yes
virtual_private=%v4:10.0.0.0/8,%v4:192.168.0.0/16,%v4:172.16.0.0/12
oe=off
protostack=netkey
conn L2TP-PSK
authby=secret
pfs=no
auto=add
keyingtries=3
rekey=no
ikelifetime=8h
keylife=1h
type=transport
left=192.168.1.1
leftprotoport=17/1701
right=%any
rightprotoport=17/%any
rightsubnet=vhost:%priv
/etc/xl2tpd/xl2tpd.conf
------------
[global]
ipsec saref = yes
[lns default]
ip range = 192.168.1.200-192.168.1.210
local ip = 192.168.1.9
refuse chap = yes
refuse pap = yes
require authentication = yes
ppp debug = yes
pppoptfile = /etc/ppp/options.xl2tpd
length bit = yes
/etc/ppp/options.xl2tpd
----------------
ipcp-accept-local
ipcp-accept-remote
ms-dns 192.168.1.1
ms-wins 192.168.1.1
noccp
auth
crtscts
idle 1800
name l2tpd
mtu 1280
mru 1280
nodefaultroute
debug
lock
proxyarp
connect-delay 5000
Thanks in advance.
Best Regards,
Stefanus
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.openswan.org/pipermail/users/attachments/20111125/528bbc23/attachment.html
More information about the Users
mailing list