Failed to Login with Ubuntu 11.10

Asked by Desmond Kan on 2011-11-27

xl2tpd[950]: death_handler: Fatal signal 15 received
Stopping xl2tpd: xl2tpd.
ipsec_setup: Starting Openswan IPsec U2.6.28/K3.0.0-12-generic...
Nov 26 23:49:45 dkan-ThinkPad-T420s ipsec__plutorun: Starting Pluto subsystem...
recvref[22]: Protocol not available
xl2tpd[1975]: This binary does not support kernel L2TP.
Starting xl2tpd: xl2tpd.
xl2tpd[1976]: xl2tpd version xl2tpd-1.2.8 started on dkan-ThinkPad-T420s PID:1976
xl2tpd[1976]: Written by Mark Spencer, Copyright (C) 1998, Adtran, Inc.
xl2tpd[1976]: Forked by Scott Balmos and David Stipp, (C) 2001
xl2tpd[1976]: Inherited by Jeff McAdams, (C) 2002
xl2tpd[1976]: Forked again by Xelerance (www.xelerance.com) (C) 2006
xl2tpd[1976]: Listening on IP address 0.0.0.0, port 1701
Nov 26 23:49:45 dkan-ThinkPad-T420s ipsec__plutorun: adjusting ipsec.d to /etc/ipsec.d
Nov 26 23:49:45 dkan-ThinkPad-T420s ipsec__plutorun: 002 added connection description "123"
003 NAT-Traversal: Trying new style NAT-T
003 NAT-Traversal: ESPINUDP(1) setup failed for new style NAT-T family IPv4 (errno=19)
003 NAT-Traversal: Trying old style NAT-T
104 "turn" #1: STATE_MAIN_I1: initiate
003 "turn" #1: ignoring unknown Vendor ID payload [5b362bc820f60007]
003 "turn" #1: received Vendor ID payload [RFC 3947] method set to=109
106 "turn" #1: STATE_MAIN_I2: sent MI2, expecting MR2
003 "turn" #1: ignoring Vendor ID payload [Sonicwall 1 (TZ 170 Standard?)]
003 "turn" #1: received Vendor ID payload [XAUTH]
003 "turn" #1: received Vendor ID payload [Dead Peer Detection]
003 "turn" #1: NAT-Traversal: Result using RFC 3947 (NAT-Traversal): i am NATed
108 "turn" #1: STATE_MAIN_I3: sent MI3, expecting MR3
003 "turn" #1: ignoring informational payload, type IPSEC_INITIAL_CONTACT msgid=00000000
004 "turn" #1: STATE_MAIN_I4: ISAKMP SA established {auth=OAKLEY_PRESHARED_KEY cipher=oakley_3des_cbc_192 prf=oakley_sha group=modp1024}
117 "turn" #2: STATE_QUICK_I1: initiate
003 "turn" #2: NAT-Traversal: received 2 NAT-OA. ignored because peer is not NATed
004 "turn" #2: STATE_QUICK_I2: sent QI2, IPsec SA established transport mode {ESP=>0xe9c73289 <0xf8bf4172 xfrm=3DES_0-HMAC_SHA1 NATOA=none NATD=none DPD=none}
xl2tpd[1976]: Connecting to host xxx.75.xxx.254, port 1701
xl2tpd[1976]: Connection established to xxx.75.xxx.254, 1701. Local: 16227, Remote: 44986 (ref=0/0).
xl2tpd[1976]: Calling on tunnel 16227
xl2tpd[1976]: Call established with xxx.75.xxx.254, Local: 227, Remote: 45723, Serial: 1 (ref=0/0)
xl2tpd[1976]: start_pppd: I'm running:
xl2tpd[1976]: "/usr/sbin/pppd"
xl2tpd[1976]: "passive"
xl2tpd[1976]: "nodetach"
xl2tpd[1976]: ":"
xl2tpd[1976]: "file"
xl2tpd[1976]: "/etc/ppp/123.options.xl2tpd"
xl2tpd[1976]: "ipparam"
xl2tpd[1976]: "xxx.75.xxx.254"
xl2tpd[1976]: "/dev/pts/1"
pppd[2174]: Plugin passprompt.so loaded.
pppd[2174]: pppd 2.4.5 started by root, uid 0
pppd[2174]: Using interface ppp0
pppd[2174]: Connect: ppp0 <--> /dev/pts/1

and i couldn't connect to any internal servers at all. Any clues?

P.S. it was working fine when it was still on 11.04.

thanks,
Desmond

Question information

Language:
English Edit question
Status:
Answered
For:
L2TP over IPsec VPN Manager Edit question
Assignee:
No assignee Edit question
Last query:
2011-11-27
Last reply:
2011-12-04
Werner Jaeger (werner-jaeger) said : #1

This seems to be the same problem as reported by Nicholas Taylor in Question 175914.

Nicholas wrote:

"I dug around some and found that this is a bug which was introduced in xl2tpd-1.2.8. Actually it's a bugfix for a bug that never existed.... This version of xl2tpd overrides and ipparam settings in /etc/ppp/$connection.options.xl2tpd with the server you are connecting to.

Debian list talking about it
https://groups.google.com/group/linux.debian.bugs.dist/browse_thread/thread/142e47f3cccf3b43

Solutions are to downgrade xl2tpd to 1.2.7 or wait for a new version. I installed version 1.2.7 from Ubuntu 11.04 and that seems to be working fine. I think this issue should be noted in documentation."

Can you help with this problem?

Provide an answer of your own, or ask Desmond Kan for more information if necessary.

To post a message you must log in.