How to set up a IPsec L2TP VPN client in Slackware
I live behind a firewall and use a VPN to tunnel through it to get to some web sites I need for work and non-work activities.
I subscribe to a VPN service that has servers in LA and elsewhere around the world. They provide software for Windows and Android that works quite well. Linux users who want to access the VPN are a small part of their market. They have provided me with a Ubuntu script by WernerJaeger that can be forced to install on Slackware. It doesnt work and it is a bear to get rid of. I decided at one point to completely reconfigure my system which was an opportunity to dump WernerJaeger's mess at the same time. I have tried OpenSwan, LibreSwan, StrongSwan, FreeSwan, xl2pd, raccoon, pluto, a NetworkManager plugin and read and followed the notes provided by Jacco, and Arch, and Gentoo, and Elastichosts and Xlerance and a number of other sources. I have at one point been successful in establishing a partial connection but the xl2pd part is quite obtuse and opaque. Also it is quite unclear how to setup the iptables. The wernerjaeger script seemed to make some attempt at this but does not work. The windows tool works quite well and the android tool works beautifully to establish the connection but i havent been able to find a way to make this work in Slackware. It's a real pain having to close slackware and reboot win7 to get to some web sites. Is anyone out there using a VPN client and could provide some tips? |
Hi,
I did it some time ago http://www.linuxquestions.org/questi...9/#post5233188 ----- Maybe these could be useful /etc/ipsec.conf Code:
config setup /etc/ipsec.secrets Code:
%any remote_ip_address : PSK "my_preshared_key" /etc/xl2tpd/xl2tpd.conf Code:
[global] /etc/ppp/options.l2tpd.client Code:
ipcp-accept-local script to start the vpn Code:
#!/bin/bash script to stop the vpn Code:
#!/bin/bash |
So you are using StrongSwan and xl2tp...?
Is there any special setup or compiling issues for StrongSwan? StrongSwan gives a very complex and lengthy list of compile options and I could not figure out which ones I needed from their documentation. The startup script is especially useful! I knew that what Arch was calling for was not going to work exactly in Slackware Quote:
Quote:
but was not able to make it give any indication that I was connected. I had read your comments about route before but was not able to figure out what to do about it. these lines are extremely helpful Quote:
|
Quote:
Quote:
Quote:
|
Well, I am still having trouble.
The IPSEC part works, as before, but the xl2tpd and ppp part doesn't seem to be working I got an error message at first from this but then created the directory and the file l2tp-control but it doesnt seem to do anything. Quote:
|
I'm sorry for not having a IPsec L2TP anymore.
When I managed to make it working, I had 3 terminal open: one with Code:
# tail -f /var/log/syslog Code:
# tail -f /var/log/messages This helped me very much (I do not remember of a specific log file where to look for debug messages), maybe you can try the same and post your logs. |
Sorry :o
I found some mistakes on the ipsec.conf file: Code:
# ipsec.conf - strongSwan IPsec configuration file |
It seems that my problem is that the ppp daemon isnt started, and xl2tpd doesnt start it.
|
This is my log on /var/log/messages when I tried
Code:
/usr/sbin/ipsec start Code:
/usr/sbin/xl2tpd Code:
/usr/sbin/ipsec up my_vpn_conn Code:
Nov 22 18:54:30 slackbook kernel: [ 2705.121247] NET: Registered protocol family 15 |
Same problem
Quote:
best regards and sorry for reviving this old thread |
No, sorry , I did not get it working.
|
I wonder if we can try a different approach. Maybe using networkmanager to use certificates.
I don't understand the ones that needs to be listed for L2TP with certificates only. No IPsec. https://developer.gnome.org/NetworkM...-settings.html Someone give me a layout of what its suppose to look like, I'll go on a testing binge. TIA |
All times are GMT -5. The time now is 10:54 PM. |