[Openswan Users] VPN Connection failing after 1-2 minutes

Kevin Keane Subscription subscription at kkeane.com
Thu Jan 23 02:49:34 EST 2014 

What are you using as client software? It may not be your server; I have a similar problem and suspect Windows 8.1. It used to work, and about two months ago stopped. I suspect some Windows update; I'm also having problems with my Windows 7 client.

Unlike you, my IPSec/L2TP server is not running Openswan (I'm actually using Fortigate). The connection collapses faster than it does for you, only a few seconds, but during that time I verified traffic is flowing.

Openswan and xl2tpd as a client works without a problem, just as your OSX Macs.

Sorry I can't offer a solution, but hopefully this additional info will help narrow down the problem.

Kevin Keane

The NetTech

760-721-8339

http://www.4nettech.com

Our values: Privacy, Liberty, Justice

See https://www.4nettech.com/corp/the-nettech-values.html



-----Original message-----
From: Alexandru Nedelcu <alex at bionicspirit.com>
Sent: Wednesday 22nd January 2014 6:15
To: users at lists.openswan.org
Subject: [Openswan Users] VPN Connection failing after 1-2 minutes

Hi folks,

I’m trying to connect to an L2TP/IPSec VPN and the connection drops after 1-2 minutes of being connected. During those 1-2 minutes, the connection does work. My colleagues that use OS X laptops don’t have problems. I’ve ran out of ideas and thought to ask on this mailing list. 

Here’s the software that I use:

*	Ubuntu 12.04
*	openswan 2.6.37
*	xl2tpd 1.3.1
*	l2tp-ipsec-vpn 1.0.9

The weird thing is that I'm not seeing a clear error in the logs. It just stops. I activated debugging logs in syslog and here’s what I’m getting:


Jan 22 16:01:50  xl2tpd[10717]: last message repeated 3 times
Jan 22 16:01:50 frecmenta xl2tpd[10717]: network_thread: recv packet from 80.149.159.132, size = 20, tunnel = 57583, call = 0 ref=0 refhim=0 
Jan 22 16:01:50 frecmenta xl2tpd[10717]: handle_avps: handling avp's for tunnel 57583, call 0
Jan 22 16:01:50 frecmenta xl2tpd[10717]: message_type_avp: message type 6 (Hello)
Jan 22 16:01:50 frecmenta xl2tpd[10717]: control_finish: message type is Hello(6).  Tunnel is 10488, call is 0. 
Jan 22 16:01:55 frecmenta xl2tpd[10717]: network_thread: recv packet from 80.149.159.132, size = 20, tunnel = 57583, call = 40673 ref=0 refhim=0

Jan 22 16:01:55 frecmenta pppd[10777]: rcvd [LCP EchoReq id=0x1 magic=0xa22708b6] 
Jan 22 16:01:55 frecmenta pppd[10777]: sent [LCP EchoRep id=0x1 magic=0x82a8e6b4]
Jan 22 16:02:13 frecmenta xl2tpd[10717]: network_thread: recv packet from 80.149.159.132, size = 20, tunnel = 57583, call = 40673 ref=0 refhim=0

Jan 22 16:02:13 frecmenta pppd[10777]: rcvd [LCP EchoReq id=0x2 magic=0xa22708b6]
Jan 22 16:02:13 frecmenta pppd[10777]: sent [LCP EchoRep id=0x2 magic=0x82a8e6b4]
Jan 22 16:02:19 frecmenta xl2tpd[10717]: network_thread: select timeout 
Jan 22 16:02:19 frecmenta xl2tpd[10717]: network_thread: recv packet from 80.149.159.132, size = 12, tunnel = 57583, call = 0 ref=0 refhim=0
Jan 22 16:02:20 frecmenta xl2tpd[10717]: network_thread: select timeout 
Jan 22 16:02:20 frecmenta xl2tpd[10717]: network_thread: recv packet from 80.149.159.132, size = 20, tunnel = 57583, call = 0 ref=0 refhim=0
Jan 22 16:02:20 frecmenta xl2tpd[10717]: handle_avps: handling avp's for tunnel 57583, call 0 
Jan 22 16:02:20 frecmenta xl2tpd[10717]: message_type_avp: message type 6 (Hello)
Jan 22 16:02:20 frecmenta xl2tpd[10717]: control_finish: message type is Hello(6).  Tunnel is 10488, call is 0.
Jan 22 16:02:31 frecmenta xl2tpd[10717]: network_thread: recv packet from 80.149.159.132, size = 20, tunnel = 57583, call = 40673 ref=0 refhim=0

Jan 22 16:02:31 frecmenta pppd[10777]: rcvd [LCP EchoReq id=0x3 magic=0xa22708b6]
Jan 22 16:02:31 frecmenta pppd[10777]: sent [LCP EchoRep id=0x3 magic=0x82a8e6b4]

# <-- connection drops here 

Jan 22 16:02:34 frecmenta L2tpIPsecVpnControlDaemon: Opening client connection
Jan 22 16:02:34 frecmenta L2tpIPsecVpnControlDaemon: Executing command service xl2tpd stop
Jan 22 16:02:34 frecmenta xl2tpd[10717]: network_thread: select returned error 4 (Interrupted system call) 
Jan 22 16:02:34 frecmenta xl2tpd[10717]: death_handler: Fatal signal 15 received
Jan 22 16:02:34 frecmenta pppd[10777]: Hangup (SIGHUP)
Jan 22 16:02:34 frecmenta pppd[10777]: Modem hangup
 Jan 22 16:02:34 frecmenta L2tpIPsecVpnControlDaemon: Command service xl2tpd stop finished with exit code 0
Jan 22 16:02:34 frecmenta pppd[10777]: Connect time 1.3 minutes.
Jan 22 16:02:34 frecmenta pppd[10777]: Sent 8172 bytes, received 28 bytes. 
Jan 22 16:02:34 frecmenta pppd[10777]: Script /etc/ppp/ip-down started (pid 10856)
Jan 22 16:02:34 frecmenta pppd[10777]: Connection terminated.
Jan 22 16:02:34 frecmenta avahi-daemon[613]: Withdrawing workstation service for ppp0. 
Jan 22 16:02:34 frecmenta NetworkManager[1079]:    SCPlugin-Ifupdown: devices removed (path: /sys/devices/virtual/net/ppp0, iface: ppp0)
Jan 22 16:02:35 frecmenta pppd[10777]: Script /etc/ppp/ip-down finished (pid 10856), status = 0x0 
Jan 22 16:02:35 frecmenta pppd[10777]: Exit.
Jan 22 16:02:35 frecmenta L2tpIPsecVpnControlDaemon: Executing command ipsec setup stop
Jan 22 16:02:35 frecmenta ipsec_setup: Stopping Openswan IPsec... 
Jan 22 16:02:36 frecmenta kernel: [ 5640.279150] NET: Unregistered protocol family 15
Jan 22 16:02:36 frecmenta ipsec_setup: ...Openswan IPsec stopped
Jan 22 16:02:36 frecmenta L2tpIPsecVpnControlDaemon: Command ipsec setup stop finished with exit code 0 
Jan 22 16:02:36 frecmenta L2tpIPsecVpnControlDaemon: Closing client connection


Any ideas?

Thanks,

-- 
Alexandru Nedelcu
www.bionicspirit.com <http://www.bionicspirit.com> 

PGP Public Key:
https://bionicspirit.com/key.aexpk

_______________________________________________

Users at lists.openswan.org

https://lists.openswan.org/mailman/listinfo/users

Micropayments: https://flattr.com/thing/38387/IPsec-for-Linux-made-easy

Building and Integrating Virtual Private Networks with Openswan:

http://www.amazon.com/gp/product/1904811256/104-3099591-2946327?n=283155



-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openswan.org/pipermail/users/attachments/20140122/cef87714/attachment.html>

More information about the Users mailing list