On 01/19/2012 08:17 AM, Chris Morley wrote: > Hi, I am trying to get L2TP roadwarrior VPN working from > http://www.shorewall.net/IPSEC-2.6.html#RW-L2TP but i am making a > mistake somewhere, appreciate a fresh set of eyes to help. > > I have the following interfaces: > > ppp0 - internet > eth0 - local network > rem - client openvpn > l2tp - ppp for lt2p clients > > I am getting the following error logged when trying to connect into the > server with L2TP from a remote machine (203.111.228.2). > > Jan 19 16:20:21 router kernel: [114176.615448] > Shorewall:net2fw:DROP:IN=ppp0 OUT= MAC= SRC=203.111.228.2 DST=2.49.2.193 > LEN=412 TOS=0x00 PREC=0x00 TTL=107 ID=15353 PROTO=UDP SPT=500 DPT=500 > LEN=392 MARK=0x100 > > I have attached a dump file. Greatly appreciate the help.
Chris, It looks like you overlooked the fact that the L2TP section is a continuation of the previous section. So you must first configure Shorewall as described in that earlier section before adding the L2TP settings. From the messages you are seeing, it looks like you don't have ipsec* entries in /etc/shorewall/tunnels. Hope this helps. -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------------ Keep Your Developer Skills Current with LearnDevNow! The most comprehensive online learning library for Microsoft developers is just $99.99! Visual Studio, SharePoint, SQL - plus HTML5, CSS3, MVC3, Metro Style Apps, more. Free future releases when you subscribe now! http://p.sf.net/sfu/learndevnow-d2d
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
