xl2tpd is not listen on the system

Behzad,

did you try to retart the VPN service using the console > Option 6 > Option 2?

Can you check if the l2tpd service is running using this command?

service -S from the CLI > Option 5 > Option 3.

Thanks

Dear lferrara

I several restart the VPN service. my pptp vpn service is work like charm but the l2tp service or better say xl2tpd is not start correctly.

it say the service is running. I check this by service command:

 

XG230_WP01_SFOS 16.01.1# service -S
lcdd RUNNING
postgres RUNNING
sigdb RUNNING
reportdb RUNNING
crreport UNREGISTERED
awarrensmtp UNREGISTERED
awarrenmta RUNNING
nasm RUNNING
ntpclient RUNNING
garner RUNNING
skein RUNNING
awarrenhttp RUNNING
WINGc RUNNING
warren RUNNING
ftpproxy RUNNING
improxy RUNNING
ctipd RUNNING
antispam RUNNING
ips RUNNING
ripd RUNNING
ospfd RUNNING
bgpd RUNNING
zebra RUNNING
dgd RUNNING
dhcpd RUNNING
dhcpd6 UNREGISTERED
ipsec RUNNING
ddc RUNNING
networkd RUNNING
dyniface UNTOUCHED
gateway RUNNING
tomcat RUNNING
apache RUNNING
antivirus RUNNING
dnsd RUNNING
sslvpn UNREGISTERED
clientless_acce RUNNING
smbnetfs RUNNING
pptpd RUNNING
l2tpd RUNNING
mrouting UNREGISTERED
pimd UNREGISTERED
msync UNTOUCHED
WAF UNREGISTERED
red_client UNTOUCHED
red UNREGISTERED
supportaccess UNTOUCHED
heartbeat UNREGISTERED
hwmon UNREGISTERED
access_server RUNNING
bwm RUNNING
fwm UNTOUCHED
radvd UNREGISTERED
fqdnd UNREGISTERED
fwlog RUNNING
pktcapd RUNNING
wifiauth UNTOUCHED
hostapd UNTOUCHED
mdev UNREGISTERED
awed RUNNING
hotspotd RUNNING
policyroute RUNNING
cfs RUNNING
listener RUNNING
timer RUNNING
shm RUNNING
dbh RUNNING

 

as you see the output of this command, it say l2tp is Runnig. even i check the process by ps and it say:

 

and the output of netstat is nothing :

XG230_WP01_SFOS 16.01.1# netstat -ntpa | grep -i 1701
XG230_WP01_SFOS 16.01.1#

 

Is there any way to export config of section "VPN service" ?

Behzad,

your netstat does not produce any output even on my XG.

Try this:

netstat -lnptu | grep 1701

Also if you try to connect to your XG from external network, a telnet on that port does it work?

Thanks

You are right. that is my mistake on mis-understanding about L2TP.

l2tp is on udp. right? so it's not list on tcp connections.

• For PPTP:
  • IP Protocol=TCP, TCP Port number=1723   <- Used by PPTP control path
  • IP Protocol=GRE (value 47)   <- Used by PPTP data path
• For L2TP:
  • IP Protocol Type=UDP, UDP Port Number=500    <- Used by IKEv1 (IPSec control path)
  • IP Protocol Type=UDP, UDP Port Number=4500   <- Used by IKEv1 (IPSec control path)
  • IP Protocol Type=ESP (value 50)   <- Used by IPSec data path

XG230_WP01_SFOS 16.01.1# netstat -ntpa | grep -i 1723
tcp    0    0    0.0.0.0:1723    0.0.0.0:*    LISTEN    3220/pptpd
XG230_WP01_SFOS 16.01.1#

 

XG230_WP01_SFOS 16.01.1# netstat -lnptu | grep 1701
udp    0     0 0.0.0.0:1701     0.0.0.0:*     31963/l2tpd
XG230_WP01_SFOS 16.01.1#

 

I can't telnet to this port, becasue it is udp and telnet just support tcp port. I check this From WAN by Netcat. It say the port is open :|

nc.exe -vu x.x.x.x 1701
x.x.x.x: inverse host lookup failed: h_errno 11004: NO_DATA
(UNKNOWN) [x.x.x.x] 1701 (l2tp) open

can you explain to my, how can  i enable debug in xl2tpd? and if it is enable where it save the debug logs.

i see it config file option but there is not a place for save log.

i know it save a some of log in /log/l2tp.log but there is not enough for me.

 

Behzad,

my mistake. You are right, L2TP uses UDP ports and telnet will not simply work (a really big mistake, sorry about that).

Enabling debugging on L2TP service does not work as expected:

service l2tpd:debug -dsnosync

400 Bad Request

Send me a PM and I will have a look at it.

Regards,

Behzad,

can you try to use the XG L2TP VPN from another OS?

For example Windows 7, Mac OS.

Thanks

Behzad,

can you try to use the XG L2TP VPN from another OS?

For example Windows 7, Mac OS.

Thanks