From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from lists.gentoo.org (pigeon.gentoo.org [208.92.234.80]) by finch.gentoo.org (Postfix) with ESMTP id 98D13138247 for ; Thu, 19 Dec 2013 15:28:49 +0000 (UTC) Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id 5348BE0BF6; Thu, 19 Dec 2013 15:28:43 +0000 (UTC) Received: from ccs.covici.com (ccs.covici.com [70.109.53.110]) (using TLSv1 with cipher ECDHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by pigeon.gentoo.org (Postfix) with ESMTPS id 61D01E0BE0 for ; Thu, 19 Dec 2013 15:28:42 +0000 (UTC) Received: from ccs.covici.com (localhost [127.0.0.1]) by ccs.covici.com (8.14.7/8.14.7) with ESMTP id rBJFSfJK013688 for ; Thu, 19 Dec 2013 10:28:41 -0500 To: gentoo-user@lists.gentoo.org Subject: Re: [gentoo-user] problem with l2tp-isec In-reply-to: <201312191504.50766.michaelkintzios@gmail.com> References: <5254.1387463248@ccs.covici.com> <201312191504.50766.michaelkintzios@gmail.com> Comments: In-reply-to Mick message dated "Thu, 19 Dec 2013 15:04:40 +0000." X-Mailer: MH-E 8.2; nmh 1.3; GNU Emacs 23.4.1 Date: Thu, 19 Dec 2013 10:28:41 -0500 Message-ID: <13686.1387466921@ccs.covici.com> From: covici@ccs.covici.com Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-user@lists.gentoo.org Reply-to: gentoo-user@lists.gentoo.org X-Archives-Salt: 5ab67a0c-6baa-4345-9332-234a62720132 X-Archives-Hash: a965b6b5cf1b9c8b0a79be2f3f9b17b5 Thanks -- I followed the wrong wiki, I will see if there is much difference and check the debugging. Thanks. Mick wrote: > On Thursday 19 Dec 2013 14:27:28 covici@ccs.covici.com wrote: > > Hi. I am trying to configure l2tp-isec to a server and although it > > works in Winblows, whenever I put c followed by the name, it times out. > > I am not seeing any particular bad messages, except that netlink says 20 > > bytes left over after parsing attributes, but there seems to be no > > solution to that. I am using openswan plus xl2tp. > > > > > > How can I troubleshoot this, or should I post my configs here? > > > > Thanks in advance for any suggestions. > > > Have you followed suggestions relevant to openswan and xl2tpd here? > > http://wiki.gentoo.org/wiki/IPsec_L2TP_VPN_server > > Increase the verbosity of the openswan debugging to see if ipsec is > established, or why it fails. > > If the ipsec association is established, then check the x2ltp configuration > and set 'debug tunnel = yes' to get more information from it, or start it as > 'xl2tpd -D' to get some useful information until you get it going. > > > However, if you are using Windows >=7 then it may be better to install and run > StrongSwan with IKEv2 on Linux, which MSWindows can now support natively and > do away with L2TP all together. Openswan also supports IKEv2. > > -- > Regards, > Mick -- Your life is like a penny. You're going to lose it. The question is: How do you spend it? John Covici covici@ccs.covici.com