Hello James, More on this below.
On 09/05/2012 16:46, Peter Hertting wrote:
What's also weird: if I add the tunnel and session configuration to the configuration file instead of using l2tpconfig I'm not seeing any of those problems. The sessions are always established correctly after a connection loss then.Unfortunately, the above statement isn't true. I'm seeing the same problems when using the config file. Here's what I do: 1. Disconnect LNS (I remove the ethernet cable) 2. Start openl2tpd 3. Wait a couple of minutes (session status changes from WAITTUNNEL to WAITREPLY during that time 4. Reconnect LNS 5. After a while the tunnel enters state ESTABLISHED but the session remains in state WAITREPLY (as discussed before).
I also tried this on an x86 machine (instead of a MIPS) using the official binaries from openl2tp.org. The behaviour is exactly the same.
l2tp> tunnel show tunnel_name=peter
Tunnel 6152, from 192.168.67.111 to 192.168.67.102:-
state: ESTABLISHED
created at: May 9 19:49:52 2012
administrative name: 'peter'
created by admin: YES, tunnel mode: LAC, persist: YES
local host name: test
peer tunnel id: 1, host name: NOT SET
UDP ports: local 47456, peer 1701
authorization mode: NONE, hide AVPs: OFF, allow PPP proxy: OFF
session limit: 0, session count: 0
tunnel profile: default, peer profile: default
session profile: default, ppp profile: default
hello timeout: 60, retry timeout: 1, idle timeout: 0
rx window size: 10, tx window size: 10, max retries: 5
use udp checksums: ON
do pmtu discovery: OFF, mtu: 1460
framing capability: SYNC ASYNC, bearer capability: DIGITAL ANALOG
use tiebreaker: OFF
trace flags: NONE
peer protocol version: 1.0, firmware 0
peer framing capability: SYNC ASYNC
peer bearer capability: NONE
peer rx window size: 4
negotiated tx window size: 4
Transport status:-
ns/nr: 24/3, peer 24/3
cwnd: 4, ssthresh: 10, congpkt_acc: 1
Transport statistics:-
out-of-sequence control/data discards: 0/0
zlbs tx/txfail/rx: 2/0/23
retransmits: 0, duplicate pkt discards: 0, data pkt discards: 0
hellos tx/txfail/rx: 22/0/2
control rx packets: 26, rx bytes: 383
control tx packets: 26, tx bytes: 622
data rx packets: 0, rx bytes: 0, rx errors: 0
data tx packets: 0, tx bytes: 0, tx errors: 0
establish retries: 0
l2tp> session show tunnel_name=peter session_name=peter
Session 52424 on tunnel 6152:-
type: LAC Incoming Call, state: WAITREPLY
created at: May 9 19:38:14 2012
administrative name: peter
created by admin: YES
ppp user name: amazon
ppp user password: amazon
ppp interface name: l2tp-peter
data sequencing required: OFF
use data sequence numbers: OFF
trace flags: NONE
framing types: SYNC ASYNC
bearer types: DIGITAL ANALOG
call serial number: 1
connect speed: 1000000
use ppp proxy: NO
last peer response information:
result code: 10, error code: 0
Peer configuration data:-
data sequencing required: OFF
framing types:
bearer types:
call serial number: 1
data rx packets: 0, rx bytes: 0, rx errors: 0
data tx packets: 0, tx bytes: 0, tx errors: 0
l2tp>
l2tp> system show statistics
L2TP counters:-
Total messages sent: 37, received: 3, retransmitted: 12
illegal: 0, unsupported: 0, ignored AVPs: 0, vendor AVPs: 0
Setup failures: tunnels: 2, sessions: 0
Resource failures: control frames: 0, peers: 0
tunnels: 0, sessions: 0, ppp: 0
Limit exceeded errors: tunnels: 0, sessions: 0
Frame errors: short frames: 0, wrong version frames: 0
unexpected data frames: 0, bad frames: 0
Internal: authentication failures: 0, message encode failures: 0
no matching tunnel discards: 0, mismatched tunnel ids: 0
no matching session_discards: 0, mismatched session ids: 0
total control frame send failures: 0, event queue fulls: 0
Message counters:-
Message RX Good RX Bad TX
ILLEGAL 0 0 0
SCCRQ 0 0 13
SCCRP 1 0 0
SCCCN 0 0 1
STOPCCN 0 0 0
RESERVED1 0 0 0
HELLO 2 0 23
OCRQ 0 0 0
OCRP 0 0 0
OCCN 0 0 0
ICRQ 0 0 0
ICRP 0 0 0
ICCN 0 0 0
RESERVED2 0 0 0
CDN 0 0 0
WEN 0 0 0
SLI 0 0 0
I have also attached some wireshark capture of the tunnel establishment.
Thanks,
Peter
--
Peter Hertting
Apeo Consulting
6 Belvedere Lawn
Douglas Road
Cork, Ireland
Phone: +353 21 4295904
Mobile: +353 86 1596329
l2tp_filtered.pcap
Description: Binary data
------------------------------------------------------------------------------ Live Security Virtual Conference Exclusive live event will cover all the ways today's security and threat landscape has changed and how IT managers can respond. Discussions will include endpoint security, mobile security and the latest in malware threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/
_______________________________________________ Openl2tp-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/openl2tp-users
