vpn-ipsec : Failed to parse config setup portion of ipsec.conf

hari85 · 06-18-2010, 01:18 AM

hai i am new to linux.i am using Centos 5.3 . kernel 2.6.18-128.el5
i have a problem with vpn. i want to connect two devices on the same lan with vpn. for that i install openswan,l2tpd and pptp.then i configure the files shown below:
1) vi /etc/ipsec.conf
version2.0
config setup
interfaces=%defaultroute
klipsdebug=none
plutodebug=none
overridemtu=1410
nat_traversal=yes
virtual_private=%v4:10.0.0.0/8,%v4:172.16.0.0/12,%v4:192.168.0.0/16
conn %default
keyingtries=3
compress=yes
disablearrivalcheck=no
authby=secret
type=tunnel
keyexchange=ike
ikelifetime=240m
keylife=60m
conn roadwarrior-net
leftsubnet=192.168.0.0/16
also=roadwarrior
connroadwarrior-all
leftsubnet=0.0.0.0/0
also=roadwarrior
conn roadwarrior-l2tp
leftprotoport=17/0
rightprotoport=17/1701
also=roadwarrior
conn roadwarrior-l2tp-updatedwin
leftprotoport=17/1701
rightprotoport=17/1701
also=roadwarrior
connroadwarrior
pfs=no
left=192.168.10.18 ( this is my linux centos 5.3 ip)
leftnexthop=192.168.10.240(this is my default server)
right=%any
rightsubnet=vhost:%no,%priv
auto=add
#Disable Opportunistic Encryption
include /etc/ipsec.d/examples/no_oe.conf

.........................................................................

2) vi /etc/ipsec.secrets
include /etc/ipsec.d/*.secrets
192.168.10.18 %any: PSK "this_is_ur_key"

....................................................

after i did some changes in the configuration files of l2tpd service

atlast i start l2tpd service. it works fine.
next i start ipsec.
then i got the error:

can not load config '/etc/ipsec.conf': /etc/ipsec.conf:1: syntax error, unexpected STRING, expecting $end [version2.0]
Failed to parse config setup portion of ipsec.conf

...........................................

pls help to fix the problem.
........................

i check my /var/log/messages file.
here r the few lines . i didn't know how to fix error from this file.
.......................................................................
Jun 18 11:38:40 localhost nmbd[2796]: Packet send failed to 192.168.10.255(137) ERRNO=No such process
Jun 18 11:38:40 localhost nmbd[2796]: [2010/06/18 11:38:40, 0] nmbd/nmbd_packets.c:send_netbios_packet(163)
Jun 18 11:38:40 localhost nmbd[2796]: send_netbios_packet: send_packet() to IP 192.168.10.255 port 137 failed
Jun 18 11:38:40 localhost nmbd[2796]: [2010/06/18 11:38:40, 0] nmbd/nmbd_namequery.c:query_name(245)
Jun 18 11:38:40 localhost nmbd[2796]: query_name: Failed to send packet trying to query name MYGROUP<1d>
Jun 18 11:42:47 localhost nmbd[2796]: [2010/06/18 11:42:47, 0] libsmb/nmblib.c:send_udp(793)

...............................................................
pls help me............

johnxcitizen · 07-17-2010, 08:12 PM

http://www.linuxquestions.org/questi...racoon-814916/

Won't help you with l2tp, though, but might help with ipsec.