[Openswan Users] Roadwarriors allow only one user a time

Renzo reda at logobject.ch
Thu Sep 19 12:24:22 UTC 2013


Hi,
We are trying to configure a roadwarriors  vpn, here the configuration 
we have:




version 2.0     # conforms to second version of ipsec.conf specification
config setup
         nat_traversal=yes
virtual_private=%v4:10.0.0.0/8,%v4:!10.11.0.0/16,%v4:192.168.0.0/16,%v4:172.16.0.0/12,%v4:25.0.0.0/8,%v6:fd00::/8,%v6:fe80::/10
         oe=off
         protostack=netkey
         uniqueids=no
# roadwarrior
conn roadwarriors
      authby=secret
      left=%defaultroute
      leftid=ourExternaIp
      leftsubnet=0.0.0.0/0
      leftxauthserver=yes
      right=%any
      rightid=%any
      rightsubnet=10.11.4.0/24
      rightxauthclient=yes
      dpddelay=30
      dpdtimeout=120
      dpdaction=clear
      rekey=no
      ikelifetime=3h
      salifetime=3h
      aggrmode=no
      ike=3des-sha1;modp1024
      type=tunnel
      phase2=esp
      phase2alg=3des-sha1;modp1024
      modecfgdns1=10.11.1.1
      auto=add

It works really fine until only one remote pc is connected.
As soon as another user try to connect, the server close the old tunnel 
and create the new one.
I.e. only one user a time can connect through the vpn.
Any suggestion?


# uname -a
Linux alixg 3.8.2 #3 Mon Mar 4 09:32:22 CET 2013 i586 Geode(TM) 
Integrated Processor by AMD PCS AuthenticAMD GNU/Linux

# ipsec --version
Linux Openswan U2.6.38/K3.8.2 (netkey)


Thanks for your time
Renzo




More information about the Users mailing list