[Openswan Users] How get ipsec error code on script

Simon Deziel simon at xelerance.com
Thu Dec 12 09:04:58 EST 2013

Hi Kenneth

> How can I know the IPsec connection status to avoid pure L2TP connection?

One way to ensure plain L2TP connections are refused is to use iptables
like this:

iptables -A INPUT -m policy --dir in --pol ipsec -p udp --dport 1701 -j
iptables -A INPUT -p udp --dport 1701 -j REJECT


More information about the Users mailing list