Package: xl2tpd Version: 1.3.18-1 Severity: normal Tags: ipv6 X-Debbugs-Cc: witold.bary...@gmail.com
Tunnel itself is over IPv4. But I have configured for the addresses to be only link-local IPv6. Other side is another Debian with manually configured xl2tpd lns. Client is using network manager with gnome plugin for configuring. IPv4 is disabled. IPv6 is link local. DNS and route propagation are all disabled. Server is 185.x.x.x Client is NATed to 85.y.y.y Connection is established, and works, but after 60 seconds it is disconnected, with error claiming that connect did not succeed. 05:11:24 ian NetworkManager[3051788]: <info> [1696655484.6741] vpn[0x557b26806b80,5ecff92c-3d25-4c19-a7f5-5aee0337d3f7,"foobar"]: starting l2tp 05:11:24 ian NetworkManager[3051788]: <info> [1696655484.6746] audit: op="connection-activate" uuid="5ecff92c-3d25-4c19-a7f5-5aee0337d3f7" name="foobar" pid=1261326 uid=1000 result="success" 05:11:24 ian nm-l2tp-service[1447505]: Check port 1701 05:11:24 ian nm-l2tp-service[1447505]: Can't bind to port 1701 05:11:24 ian nm-l2tp-service[1447505]: xl2tpd started with pid 1447510 05:11:24 ian NetworkManager[1447510]: xl2tpd[1447510]: Not looking for kernel SAref support. 05:11:24 ian NetworkManager[1447510]: xl2tpd[1447510]: Using l2tp kernel support. 05:11:24 ian NetworkManager[1447510]: xl2tpd[1447510]: xl2tpd version xl2tpd-1.3.18 started on debian PID:1447510 05:11:24 ian NetworkManager[1447510]: xl2tpd[1447510]: Written by Mark Spencer, Copyright (C) 1998, Adtran, Inc. 05:11:24 ian NetworkManager[1447510]: xl2tpd[1447510]: Forked by Scott Balmos and David Stipp, (C) 2001 05:11:24 ian NetworkManager[1447510]: xl2tpd[1447510]: Inherited by Jeff McAdams, (C) 2002 05:11:24 ian NetworkManager[1447510]: xl2tpd[1447510]: Forked again by Xelerance (www.xelerance.com) (C) 2006-2016 05:11:24 ian NetworkManager[1447510]: xl2tpd[1447510]: Listening on IP address 0.0.0.0, port 34425 05:11:24 ian NetworkManager[1447510]: xl2tpd[1447510]: Connecting to host 185.x.x.x, port 1701 05:11:24 ian NetworkManager[1447510]: xl2tpd[1447510]: Connection established to 185.x.x.x, 1701. Local: 11106, Remote: 63049 (ref=0/0). 05:11:24 ian NetworkManager[1447510]: xl2tpd[1447510]: Calling on tunnel 11106 05:11:24 ian NetworkManager[1447510]: xl2tpd[1447510]: Call established with 185.x.x.x, Local: 19014, Remote: 81, Serial: 1 (ref=0/0) 05:11:24 ian NetworkManager[1447510]: xl2tpd[1447510]: start_pppd: I'm running: 05:11:24 ian NetworkManager[1447510]: xl2tpd[1447510]: "/usr/sbin/pppd" 05:11:24 ian NetworkManager[1447510]: xl2tpd[1447510]: "plugin" 05:11:24 ian NetworkManager[1447510]: xl2tpd[1447510]: "pppol2tp.so" 05:11:24 ian NetworkManager[1447510]: xl2tpd[1447510]: "pppol2tp" 05:11:24 ian NetworkManager[1447510]: xl2tpd[1447510]: "7" 05:11:24 ian NetworkManager[1447510]: xl2tpd[1447510]: "passive" 05:11:24 ian NetworkManager[1447510]: xl2tpd[1447510]: "nodetach" 05:11:24 ian NetworkManager[1447510]: xl2tpd[1447510]: ":" 05:11:24 ian NetworkManager[1447510]: xl2tpd[1447510]: "file" 05:11:24 ian NetworkManager[1447510]: xl2tpd[1447510]: "/run/nm-l2tp-5ecff92c-3d25-4c19-a7f5-5aee0337d3f7/ppp-options" 05:11:24 ian pppd[1447511]: Plugin pppol2tp.so loaded. 05:11:24 ian pppd[1447511]: Plugin /usr/lib/pppd/2.4.9/nm-l2tp-pppd-plugin.so loaded. 05:11:24 ian pppd[1447511]: pppd 2.4.9 started by root, uid 0 05:11:24 ian pppd[1447511]: Using interface ppp0 05:11:24 ian pppd[1447511]: Connect: ppp0 <--> 05:11:24 ian pppd[1447511]: Overriding mtu 1500 to 1400 05:11:24 ian pppd[1447511]: Overriding mru 1500 to mtu value 1400 05:11:24 ian NetworkManager[3051788]: <info> [1696655484.7433] manager: (ppp0): new Ppp device (/org/freedesktop/NetworkManager/Devices/17) 05:11:24 ian pppd[1447511]: Overriding mtu 1410 to 1400 05:11:24 ian pppd[1447511]: CHAP authentication succeeded: Access granted 05:11:24 ian pppd[1447511]: CHAP authentication succeeded 05:11:24 ian pppd[1447511]: local LL address fe80::b97c:8b16:1d15:4290 05:11:24 ian pppd[1447511]: remote LL address fe80::4cf4:aed1:1b82:4b42 I can ping the remote LL address, responses come back. I see flow on ppp0 (using tcpdump) on both sides. No issues. 60 seconds later: 05:12:25 ian NetworkManager[3051788]: <warn> [1696655545.0670] vpn[0x557b26806b80,5ecff92c-3d25-4c19-a7f5-5aee0337d3f7,"foobar"]: connect timeout exceeded 05:12:25 ian nm-l2tp-service[1447505]: Connect timer expired, disconnecting. 05:12:25 ian NetworkManager[1447510]: xl2tpd[1447510]: death_handler: Fatal signal 15 received 05:12:25 ian NetworkManager[1447510]: xl2tpd[1447510]: Terminating pppd: sending TERM signal to pid 1447511 05:12:25 ian NetworkManager[1447510]: xl2tpd[1447510]: Connection 63049 closed to 185.x.x.x, port 1701 (Server closing) 05:12:25 ian pppd[1447511]: Terminating on signal 15 05:12:25 ian pppd[1447511]: Overriding mtu 1500 to 1400 05:12:25 ian pppd[1447511]: Overriding mru 1500 to mtu value 1400 05:12:25 ian pppd[1447511]: Connection terminated. 05:12:25 ian pppd[1447511]: Connect time 1.1 minutes. 05:12:25 ian pppd[1447511]: Sent 47436 bytes, received 47342 bytes. 05:12:25 ian pppd[1447511]: Exit. Logs from the server side: 07:11:24 foobar xl2tpd[1769032]: Connection established to 85.y.y.y, 34425. Local: 63049, Remote: 11106 (ref=0/0). LNS session is 'default' 07:11:24 foobar xl2tpd[1769032]: start_pppd: I'm running: 07:11:24 foobar xl2tpd[1769032]: "/usr/sbin/pppd" 07:11:24 foobar xl2tpd[1769032]: "plugin" 07:11:24 foobar xl2tpd[1769032]: "pppol2tp.so" 07:11:24 foobar xl2tpd[1769032]: "pppol2tp" 07:11:24 foobar xl2tpd[1769032]: "7" 07:11:24 foobar xl2tpd[1769032]: "pppol2tp_lns_mode" 07:11:24 foobar xl2tpd[1769032]: "pppol2tp_tunnel_id" 07:11:24 foobar xl2tpd[1769032]: "63049" 07:11:24 foobar xl2tpd[1769032]: "pppol2tp_session_id" 07:11:24 foobar xl2tpd[1769032]: "81" 07:11:24 foobar xl2tpd[1769032]: "passive" 07:11:24 foobar xl2tpd[1769032]: "nodetach" 07:11:24 foobar xl2tpd[1769032]: "192.168.20.1:192.168.20.2" 07:11:24 foobar xl2tpd[1769032]: "auth" 07:11:24 foobar xl2tpd[1769032]: "name" 07:11:24 foobar xl2tpd[1769032]: "l2tpdefault" 07:11:24 foobar xl2tpd[1769032]: "file" 07:11:24 foobar xl2tpd[1769032]: "/etc/ppp/options.xl2tpd" 07:11:24 foobar xl2tpd[1769032]: Call established with 85.195.241.133, PID: 1769361, Local: 81, Remote: 19014, Serial: 1 07:11:24 foobar pppd[1769361]: Plugin pppol2tp.so loaded. 07:11:24 foobar pppd[1769361]: pppd 2.4.9 started by root, uid 0 07:11:24 foobar pppd[1769361]: using channel 9 07:11:24 foobar pppd[1769361]: Using interface ppp0 07:11:24 foobar pppd[1769361]: Connect: ppp0 <--> 07:11:24 foobar pppd[1769361]: Overriding mtu 1500 to 1410 07:11:24 foobar pppd[1769361]: PPPoL2TP options: lnsmode tid 63049 sid 81 debugmask 0 07:11:24 foobar pppd[1769361]: Overriding mru 1500 to mtu value 1410 07:11:24 foobar pppd[1769361]: rcvd [LCP ConfReq id=0x1 <mru 1400> <asyncmap 0x0> <magic 0x3a4f5f9a>] 07:11:24 foobar pppd[1769361]: sent [LCP ConfReq id=0x1 <mru 1410> <asyncmap 0x0> <auth eap> <magic 0xfcd008d3>] 07:11:24 foobar pppd[1769361]: sent [LCP ConfAck id=0x1 <mru 1400> <asyncmap 0x0> <magic 0x3a4f5f9a>] 07:11:24 foobar pppd[1769361]: rcvd [LCP ConfNak id=0x1 <auth chap MD5>] 07:11:24 foobar pppd[1769361]: sent [LCP ConfReq id=0x2 <mru 1410> <asyncmap 0x0> <auth chap MD5> <magic 0xfcd008d3>] 07:11:24 foobar pppd[1769361]: rcvd [LCP ConfAck id=0x2 <mru 1410> <asyncmap 0x0> <auth chap MD5> <magic 0xfcd008d3>] 07:11:24 foobar pppd[1769361]: PPPoL2TP options: lnsmode tid 63049 sid 81 debugmask 0 07:11:24 foobar pppd[1769361]: sent [LCP EchoReq id=0x0 magic=0xfcd008d3] 07:11:24 foobar pppd[1769361]: sent [CHAP Challenge id=0xee <secretsecret>, name = "l2tpdefault"] 07:11:24 foobar pppd[1769361]: rcvd [LCP EchoReq id=0x0 magic=0x3a4f5f9a] 07:11:24 foobar pppd[1769361]: sent [LCP EchoRep id=0x0 magic=0xfcd008d3] 07:11:24 foobar pppd[1769361]: rcvd [LCP EchoRep id=0x0 magic=0x3a4f5f9a] 07:11:24 foobar pppd[1769361]: rcvd [CHAP Response id=0xee <fooooooo>, name = "baryluk"] 07:11:24 foobar pppd[1769361]: sent [CHAP Success id=0xee "Access granted"] 07:11:24 foobar pppd[1769361]: sent [IPCP ConfReq id=0x1 <addr 192.168.20.1>] 07:11:24 foobar pppd[1769361]: sent [IPV6CP ConfReq id=0x1 <addr fe80::4cf4:aed1:1b82:4b42>] 07:11:24 foobar pppd[1769361]: rcvd [LCP ProtRej id=0x2 80 21 01 01 00 0a 03 06 c0 a8 14 01] 07:11:24 foobar pppd[1769361]: Protocol-Reject for 'Internet Protocol Control Protocol' (0x8021) received 07:11:24 foobar pppd[1769361]: rcvd [IPV6CP ConfReq id=0x1 <addr fe80::b97c:8b16:1d15:4290>] 07:11:24 foobar pppd[1769361]: sent [IPV6CP ConfAck id=0x1 <addr fe80::b97c:8b16:1d15:4290>] 07:11:24 foobar pppd[1769361]: rcvd [IPV6CP ConfAck id=0x1 <addr fe80::4cf4:aed1:1b82:4b42>] 07:11:24 foobar pppd[1769361]: local LL address fe80::4cf4:aed1:1b82:4b42 07:11:24 foobar pppd[1769361]: remote LL address fe80::b97c:8b16:1d15:4290 07:11:24 foobar pppd[1769361]: Script /etc/ppp/ipv6-up started (pid 1769367) 07:11:24 foobar pppd[1769361]: Script /etc/ppp/ipv6-up finished (pid 1769367), status = 0x0 07:12:25 foobar xl2tpd[1769032]: control_finish: Connection closed to 85.y.y.y, port 34425 (Server closing), Local: 63049, Remote: 11106 07:12:25 foobar xl2tpd[1769032]: Terminating pppd: sending TERM signal to pid 1769361 07:12:25 foobar pppd[1769361]: Terminating on signal 15 07:12:25 foobar pppd[1769361]: Script /etc/ppp/ipv6-down started (pid 1769378) 07:12:25 foobar pppd[1769361]: Overriding mtu 1500 to 1410 07:12:25 foobar pppd[1769361]: PPPoL2TP options: lnsmode tid 63049 sid 81 debugmask 0 07:12:25 foobar pppd[1769361]: Overriding mru 1500 to mtu value 1410 07:12:25 foobar pppd[1769361]: sent [LCP TermReq id=0x3 "User request"] 07:12:25 foobar pppd[1769361]: Script /etc/ppp/ipv6-down finished (pid 1769378), status = 0x0 07:12:25 foobar pppd[1769361]: rcvd [LCP TermReq id=0x3 "User request"] 07:12:25 foobar pppd[1769361]: sent [LCP TermAck id=0x3] 07:12:25 foobar pppd[1769361]: rcvd [LCP TermAck id=0x3] 07:12:25 foobar pppd[1769361]: Connection terminated. 07:12:25 foobar pppd[1769361]: Connect time 1.1 minutes. 07:12:25 foobar pppd[1769361]: Sent 47446 bytes, received 47436 bytes. 07:12:25 foobar pppd[1769361]: Exit. Regards, Witold -- System Information: Debian Release: trixie/sid APT prefers unstable-debug APT policy: (500, 'unstable-debug'), (500, 'unstable') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 6.1.0-9-amd64 (SMP w/32 CPU threads; PREEMPT) Kernel taint flags: TAINT_OOT_MODULE, TAINT_UNSIGNED_MODULE, TAINT_SOFTLOCKUP Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), LANGUAGE not set Shell: /bin/sh linked to /usr/bin/dash Init: systemd (via /run/systemd/system) LSM: AppArmor: enabled Versions of packages xl2tpd depends on: ii libc6 2.37-12 ii libpcap0.8 1.10.4-4 ii ppp 2.4.9-1+1.1+b1 ii sysvinit-utils [lsb-base] 3.08-1 xl2tpd recommends no packages. xl2tpd suggests no packages. -- Configuration Files: /etc/xl2tpd/l2tp-secrets [Errno 13] Permission denied: '/etc/xl2tpd/l2tp-secrets' -- no debconf information
