LinuxQuestions.org
Visit Jeremy's Blog.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Networking
User Name
Password
Linux - Networking This forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.

Notices


Reply
  Search this Thread
Old 11-12-2015, 01:49 PM   #1
rafspiny
LQ Newbie
 
Registered: Nov 2015
Posts: 2

Rep: Reputation: Disabled
VPN with l2tp over ipsec


Hi all,

I have a question about using l2tp over ipsec for a VPN.
I am able to establish a ipsec connection and a l2tp tunnel using xl2tp.

But ppp is struggling to establish a connection.
It seems to be an issue with the configuration I'm sending to the server. The client and the server cannot find an agreement on how to authenticate.

I have pasted the log here: http://pastebin.com/XRBhWG73
I believe there is even a magic number mismatch.

Yu an easily spot these lines:
Code:
Nov 12 18:19:30 sunnydale pppd[3960]: sent [LCP ConfReq id=0x1 <mru 1410> <asyncmap 0x0> <magic 0x882c8fa6>]
Nov 12 18:19:30 sunnydale pppd[3960]: rcvd [LCP ConfReq id=0x1 <mru 1400> <asyncmap 0x0> <auth pap> <magic 0x67868de>]
Nov 12 18:19:30 sunnydale pppd[3960]: sent [LCP ConfNak id=0x1 <auth chap MS-v2>]
Nov 12 18:19:30 sunnydale pppd[3960]: rcvd [LCP ConfAck id=0x1 <mru 1410> <asyncmap 0x0> <magic 0x882c8fa6>]
Nov 12 18:19:30 sunnydale pppd[3960]: rcvd [LCP ConfReq id=0x2 <mru 1400> <asyncmap 0x0> <magic 0x67868de>]
Nov 12 18:19:30 sunnydale pppd[3960]: sent [LCP ConfAck id=0x2 <mru 1400> <asyncmap 0x0> <magic 0x67868de>]
The ppp configuration is /etc/ppp/options.xl2tpd.<OFFICE>Work
Code:
    ipcp-accept-local
    ipcp-accept-remote
    refuse-eap
    require-mschap-v2
    noccp
    noauth
    idle 1800
    mtu 1410
    mru 1410
    defaultroute
    debug
    lock
    connect-delay 5000
    name foo.bar@organization.com
    password mysecret
Any suggestion about this? The configuration seems to be fine.
Any suggestions is appreciated.

Thanks you so much.
 
Old 11-13-2015, 03:24 PM   #2
nini09
Senior Member
 
Registered: Apr 2009
Posts: 1,860

Rep: Reputation: 162Reputation: 162
Based on log, server want to use PAP authentication.
 
Old 11-15-2015, 05:27 AM   #3
rafspiny
LQ Newbie
 
Registered: Nov 2015
Posts: 2

Original Poster
Rep: Reputation: Disabled
Indeed I forgot to uncomment "refuse pap = yes" in the xl2tpd.conf file

Thank you so much!
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
Setting up L2TP over IPSec VPN server under CentOS 5.3 fantasygoat Linux - Networking 6 01-12-2016 03:41 AM
L2TP/IPSec VPN Setup on Centos 6 ahm375 Linux - Networking 3 08-02-2014 11:03 AM
Can't Establish Connection L2TP/IPSec VPN nasvi Linux - Security 0 02-21-2014 04:44 PM
L2TP/IPsec VPN connection with client behind NAT poorlittlelinuxuser Linux - Newbie 2 09-16-2012 09:41 PM
IPsec/L2TP VPN question IPsecLearner Linux - Networking 3 04-19-2005 11:32 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Networking

All times are GMT -5. The time now is 01:32 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration