Hi,
I am trying to setup IPSEC/L2TP VPN client on FreeBSD 11.1, I got security/strongswan working and I can see it establish the connection, now trying to setup net/l2tpd, Following is the configuration:
/usr/local/etc/l2tp/l2tp.conf
The messages I see when I execute
Content of /etc/ppp/ppp-oh.opts
I have similar setup on a Debian 9 VM and it works fine. I am trying to make this work.
I am trying to setup IPSEC/L2TP VPN client on FreeBSD 11.1, I got security/strongswan working and I can see it establish the connection, now trying to setup net/l2tpd, Following is the configuration:
/usr/local/etc/l2tp/l2tp.conf
Code:
[global] access control = yes Port = 1701 [lac l2tp] lns = 3x.x.x.x require pap = yes pppoptfile = /etc/ppp/ppp-oh.opts tunnel rws = 8 autodial = yes redial = yes
The messages I see when I execute
l2tpd -D -c /usr/local/etc/l2tp/l2tp.conf
:Code:
This binary does not support kernel L2TP. l2tpd version 0.69 started on freebsd PID:6967 Written by Mark Spencer, Copyright (C) 1998, Adtran, Inc. Forked by Scott Balmos and David Stipp, (C) 2001 Inhereted by Jeff McAdams, (C) 2002 FreeBSD version 11.1-RELEASE-p4 on a amd64, addr 0.0.0.0, port 1701 ourtid = 43639, entropy_buf = aa77 l2tp_call:Connecting to host 3x.x.x.x, port 1701 check_control: control, cid = 0, Ns = 0, Nr = 1 handle_avps: handling avp's for tunnel 43639, call 0 message_type_avp: message type 2 (Start-Control-Connection-Reply) protocol_version_avp: peer is using version 1, revision 0. framing_caps_avp: supported peer frames: async sync bearer_caps_avp: supported peer bearers: analog digital firmware_rev_avp: peer reports firmware version 264 (0x0108) hostname_avp: peer reports hostname 'm00180A02B198' vendor_avp: peer reports vendor 'Katalix Systems Ltd. Linux-3.18.21-meraki-x86+ (x86_64' assigned_tunnel_avp: using peer's tunnel 54383 receive_window_size_avp: peer wants RWS of 10. Will use flow control. control_finish: Connection established to 3x.x.x.x, 1701. Local: 43639, Remote: 54383. ourcid = 37916, entropy_buf = 941c lac_call: Calling on tunnel 43639 check_control: control, cid = 0, Ns = 1, Nr = 3 handle_avps: handling avp's for tunnel 43639, call 37916 message_type_avp: message type 11 (Incoming-Call-Reply) assigned_call_avp: using peer's call 7817 control_finish: Call established with 3x.x.x.x, Local: 37916, Remote: 7817, Serial: 1 getPtyMaster: No more free pseudo-tty's start_pppd: unable to allocate pty, abandoning! write_packet: tty is not open yet. check_control: control, cid = 0, Ns = 2, Nr = 4 write_packet: tty is not open yet. write_packet: tty is not open yet. write_packet: tty is not open yet. write_packet: tty is not open yet. write_packet: tty is not open yet. write_packet: tty is not open yet. write_packet: tty is not open yet. write_packet: tty is not open yet. write_packet: tty is not open yet. check_control: control, cid = 0, Ns = 2, Nr = 5
Content of /etc/ppp/ppp-oh.opts
Code:
detach usepeerdns noipdefault nodefaultroute noauth noccp refuse-eap refuse-chap refuse-mschap refuse-mschap-v2 lcp-echo-failure 0 lcp-echo-interval 0 mru 1400 mtu 1400 user MY_LDAP_ID_HERE password MY_PASSWORD
I have similar setup on a Debian 9 VM and it works fine. I am trying to make this work.