I suddenly find strange thing in my rp-l2tpd datmon. I'm niwbie user of it, so please don't mind if I'm wrong. But....
I use rp-l2tpd to build l2tpd over ipsec connections. In l2tp.conf I have some peers, without any athentification. For example:
section peer peer 192.168.99.1 lac-handler sync-pppd lns-handler sync-pppd hide-avps yes
When I try to set up connection from other peer (e.g 192.168.99.2) l2tpd daemon died. In debug mode it writes
==================================
0.000 dgram_take_from_wire() -> type=SCCRQ, tid=0, sid=0, Nr=0, Ns=0
0.000 tunnel_new() -> 63779/0
Error: Peer 192.168.99.2 is not authorized to create a tunnel
0.000 tunnel_send_StopCCN(63779/18, 4, 0, Peer 192.168.99.2 is not authorized to create a tunnel)
Segmentation fault
===================================
I try it on RedHat 8.0 + kernel 2.4.20 (manually rebuilded) and on RedHat 9 + kernel 2.4.22 (manually rebuilded) with same result.
Am I doing something wrong? Or it's rp-l2tpd bug? It's not a big problem while I'm working in LAN but in my opinion it looks like very dangerous to open access into Internet for rp-l2tpd in this case, because anybody can kill daemon remotely.
What gurus think about it?
