Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 1 reply
  • Subscribers 2 subscribers
  • Views 3689 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

L2TP over IPsec from IPv6 client no connection

filippb

Is there a setting that needs to be turned on? i can't get a client with IPv6 connected to L2TP over IPsec. in the log it says the connection is coming from IP 0.0.0.0

 

Thanks



This thread was automatically locked due to age.
  • 0

    log below demonstrating both connection. one is from IPv4 and the seconf from IPv6:

    2017:12:20-10:14:07 mail pluto[11335]: packet from 207.237.28.22:500: ignoring Vendor ID payload [FRAGMENTATION 80000000]
    2017:12:20-10:14:07 mail pluto[11335]: packet from 207.237.28.22:500: received Vendor ID payload [Dead Peer Detection]
    2017:12:20-10:14:07 mail pluto[11335]: "L_for admin"[1] 207.237.28.22 #3701: responding to Main Mode from unknown peer 207.237.28.22
    2017:12:20-10:14:07 mail pluto[11335]: "L_for admin"[1] 207.237.28.22 #3701: NAT-Traversal: Result using RFC 3947: peer is NATed
    2017:12:20-10:14:07 mail pluto[11335]: | NAT-T: new mapping 207.237.28.22:500/4500)
    2017:12:20-10:14:07 mail pluto[11335]: "L_for admin"[1] 207.237.28.22:4500 #3701: ignoring informational payload, type IPSEC_INITIAL_CONTACT
    2017:12:20-10:14:07 mail pluto[11335]: "L_for admin"[1] 207.237.28.22:4500 #3701: Peer ID is ID_IPV4_ADDR: '192.168.1.110'
    2017:12:20-10:14:07 mail pluto[11335]: "L_for admin"[2] 207.237.28.22:4500 #3701: deleting connection "L_for admin"[1] instance with peer 207.237.28.22 {isakmp=#0/ipsec=#0}
    2017:12:20-10:14:07 mail pluto[11335]: "L_for admin"[2] 207.237.28.22:4500 #3701: Dead Peer Detection (RFC 3706) enabled
    2017:12:20-10:14:07 mail pluto[11335]: "L_for admin"[2] 207.237.28.22:4500 #3701: sent MR3, ISAKMP SA established
    2017:12:20-10:14:08 mail pluto[11335]: "L_for admin"[1] 207.237.28.22:4500 #3702: NAT-Traversal: received 2 NAT-OA. using first, ignoring others
    2017:12:20-10:14:08 mail pluto[11335]: "L_for admin"[1] 207.237.28.22:4500 #3702: responding to Quick Mode
    2017:12:20-10:14:08 mail pppd-l2tp[29758]: Plugin aua.so loaded.
    2017:12:20-10:14:08 mail pppd-l2tp[29758]: AUA plugin initialized.
    2017:12:20-10:14:08 mail pppd-l2tp[29758]: Plugin ippool.so loaded.
    2017:12:20-10:14:08 mail pppd-l2tp[29758]: Plugin pppol2tp.so loaded.
    2017:12:20-10:14:09 mail pppd-l2tp[29758]: pppd 2.4.7 started by (unknown), uid 0
    2017:12:20-10:14:09 mail pppd-l2tp[29758]: Using interface ppp0
    2017:12:20-10:14:09 mail pppd-l2tp[29758]: Connect: ppp0 <-->
    2017:12:20-10:14:09 mail pppd-l2tp[29758]: Overriding mtu 1500 to 1380
    2017:12:20-10:14:09 mail pppd-l2tp[29758]: Overriding mru 1500 to mtu value 1380
    2017:12:20-10:14:09 mail pluto[11335]: "L_for admin"[1] 207.237.28.22:4500 #3702: IPsec SA established {ESP=>0x0d30a0af <0x84303ff7 NATOA=192.168.1.110 DPD}
    2017:12:20-10:14:11 mail pppd-l2tp[29758]: Overriding mtu 1500 to 1380
    2017:12:20-10:14:14 mail pppd-l2tp[29758]: found interface eth0 for proxy arp
    2017:12:20-10:14:14 mail pppd-l2tp[29758]: local IP address 10.242.3.1
    2017:12:20-10:14:14 mail pppd-l2tp[29758]: remote IP address 192.168.14.117
    2017:12:20-10:14:14 mail pppd-l2tp[29758]: id="2201" severity="info" sys="SecureNet" sub="vpn" event="Connection started" username="admin" variant="l2tp" srcip="207.237.28.22" virtual_ip="192.168.14.117"
    2017:12:20-10:14:32 mail pppd-l2tp[29758]: LCP terminated by peer (User request)
    2017:12:20-10:14:32 mail pppd-l2tp[29758]: Connect time 0.3 minutes.
    2017:12:20-10:14:32 mail pppd-l2tp[29758]: Sent 2016 bytes, received 1693 bytes.
    2017:12:20-10:14:32 mail pppd-l2tp[29758]: Overriding mtu 1500 to 1380
    2017:12:20-10:14:32 mail pppd-l2tp[29758]: Overriding mru 1500 to mtu value 1380
    2017:12:20-10:14:32 mail pppd-l2tp[29758]: Terminating on signal 15
    2017:12:20-10:14:32 mail pluto[11335]: "L_for admin"[2] 207.237.28.22:4500 #3701: received Delete SA(0x0d30a0af) payload: deleting IPSEC State #3702
    2017:12:20-10:14:32 mail pluto[11335]: "L_for admin"[2] 207.237.28.22:4500 #3701: deleting connection "L_for admin"[1] instance with peer 207.237.28.22 {isakmp=#0/ipsec=#0}
    2017:12:20-10:14:32 mail pluto[11335]: "L_for admin"[2] 207.237.28.22:4500 #3701: received Delete SA payload: deleting ISAKMP State #3701
    2017:12:20-10:14:32 mail pluto[11335]: "L_for admin"[2] 207.237.28.22:4500: deleting connection "L_for admin"[2] instance with peer 207.237.28.22 {isakmp=#0/ipsec=#0}
    2017:12:20-10:14:33 mail pppd-l2tp[29758]: id="2202" severity="info" sys="SecureNet" sub="vpn" event="Connection terminated" username="admin" variant="l2tp" srcip="207.237.28.22" virtual_ip="192.168.14.117"
    2017:12:20-10:14:35 mail pppd-l2tp[29758]: Connection terminated.
    2017:12:20-10:14:35 mail pppd-l2tp[29758]: Modem hangup
    2017:12:20-10:14:35 mail pppd-l2tp[29758]: Exit.
     
     
     
    2017:12:20-10:15:03 mail pluto[11335]: packet from 172.58.225.113:24328: received Vendor ID payload [RFC 3947]
    2017:12:20-10:15:03 mail pluto[11335]: packet from 172.58.225.113:24328: ignoring Vendor ID payload [4df37928e9fc4fd1b3262170d515c662]
    2017:12:20-10:15:03 mail pluto[11335]: packet from 172.58.225.113:24328: ignoring Vendor ID payload [8f8d83826d246b6fc7a8a6a428c11de8]
    2017:12:20-10:15:03 mail pluto[11335]: packet from 172.58.225.113:24328: ignoring Vendor ID payload [439b59f8ba676c4c7737ae22eab8f582]
    2017:12:20-10:15:03 mail pluto[11335]: packet from 172.58.225.113:24328: ignoring Vendor ID payload [4d1e0e136deafa34c4f3ea9f02ec7285]
    2017:12:20-10:15:03 mail pluto[11335]: packet from 172.58.225.113:24328: ignoring Vendor ID payload [80d0bb3def54565ee84645d4c85ce3ee]
    2017:12:20-10:15:03 mail pluto[11335]: packet from 172.58.225.113:24328: ignoring Vendor ID payload [9909b64eed937c6573de52ace952fa6b]
    2017:12:20-10:15:03 mail pluto[11335]: packet from 172.58.225.113:24328: ignoring Vendor ID payload [draft-ietf-ipsec-nat-t-ike-03]
    2017:12:20-10:15:03 mail pluto[11335]: packet from 172.58.225.113:24328: ignoring Vendor ID payload [draft-ietf-ipsec-nat-t-ike-02]
    2017:12:20-10:15:03 mail pluto[11335]: packet from 172.58.225.113:24328: ignoring Vendor ID payload [draft-ietf-ipsec-nat-t-ike-02_n]
    2017:12:20-10:15:03 mail pluto[11335]: packet from 172.58.225.113:24328: ignoring Vendor ID payload [FRAGMENTATION 80000000]
    2017:12:20-10:15:03 mail pluto[11335]: packet from 172.58.225.113:24328: received Vendor ID payload [Dead Peer Detection]
    2017:12:20-10:15:03 mail pluto[11335]: "L_for admin"[3] 172.58.225.113:24328 #3703: responding to Main Mode from unknown peer 172.58.225.113:24328
    2017:12:20-10:15:03 mail pluto[11335]: "L_for admin"[3] 172.58.225.113:24328 #3703: NAT-Traversal: Result using RFC 3947: both are NATed
    2017:12:20-10:15:03 mail pluto[11335]: | NAT-T: new mapping 172.58.225.113:24328/42450)
    2017:12:20-10:15:03 mail pluto[11335]: "L_for admin"[3] 172.58.225.113:42450 #3703: ignoring informational payload, type IPSEC_INITIAL_CONTACT
    2017:12:20-10:15:03 mail pluto[11335]: "L_for admin"[3] 172.58.225.113:42450 #3703: Peer ID is ID_IPV4_ADDR: '0.0.0.0'
    2017:12:20-10:15:03 mail pluto[11335]: "L_for admin"[4] 172.58.225.113:42450 #3703: deleting connection "L_for admin"[3] instance with peer 172.58.225.113 {isakmp=#0/ipsec=#0}
    2017:12:20-10:15:03 mail pluto[11335]: "L_for admin"[4] 172.58.225.113:42450 #3703: Dead Peer Detection (RFC 3706) enabled
    2017:12:20-10:15:03 mail pluto[11335]: "L_for admin"[4] 172.58.225.113:42450 #3703: sent MR3, ISAKMP SA established
    2017:12:20-10:15:04 mail pluto[11335]: "L_for admin"[4] 172.58.225.113:42450 #3703: peer client ID payload ID_IPV4_ADDR is invalid (0.0.0.0) in Quick I1
    2017:12:20-10:15:04 mail pluto[11335]: "L_for admin"[4] 172.58.225.113:42450 #3703: sending encrypted notification INVALID_ID_INFORMATION to 172.58.225.113:42450
    2017:12:20-10:15:07 mail pluto[11335]: "L_for admin"[4] 172.58.225.113:42450 #3703: Quick Mode I1 message is unacceptable because it uses a previously used Message ID 0xb80cd678 (perhaps this is a duplicated packet)
    2017:12:20-10:15:07 mail pluto[11335]: "L_for admin"[4] 172.58.225.113:42450 #3703: sending encrypted notification INVALID_MESSAGE_ID to 172.58.225.113:42450
    2017:12:20-10:15:11 mail pluto[11335]: "L_for admin"[4] 172.58.225.113:42450 #3703: Quick Mode I1 message is unacceptable because it uses a previously used Message ID 0xb80cd678 (perhaps this is a duplicated packet)
    2017:12:20-10:15:11 mail pluto[11335]: "L_for admin"[4] 172.58.225.113:42450 #3703: sending encrypted notification INVALID_MESSAGE_ID to 172.58.225.113:42450
    2017:12:20-10:15:14 mail pluto[11335]: "L_for admin"[4] 172.58.225.113:42450 #3703: Quick Mode I1 message is unacceptable because it uses a previously used Message ID 0xb80cd678 (perhaps this is a duplicated packet)
    2017:12:20-10:15:14 mail pluto[11335]: "L_for admin"[4] 172.58.225.113:42450 #3703: sending encrypted notification INVALID_MESSAGE_ID to 172.58.225.113:42450
    2017:12:20-10:15:17 mail pluto[11335]: "L_for admin"[4] 172.58.225.113:42450 #3703: Quick Mode I1 message is unacceptable because it uses a previously used Message ID 0xb80cd678 (perhaps this is a duplicated packet)
    2017:12:20-10:15:17 mail pluto[11335]: "L_for admin"[4] 172.58.225.113:42450 #3703: sending encrypted notification INVALID_MESSAGE_ID to 172.58.225.113:42450
    2017:12:20-10:15:20 mail pluto[11335]: "L_for admin"[4] 172.58.225.113:42450 #3703: Quick Mode I1 message is unacceptable because it uses a previously used Message ID 0xb80cd678 (perhaps this is a duplicated packet)
    2017:12:20-10:15:20 mail pluto[11335]: "L_for admin"[4] 172.58.225.113:42450 #3703: sending encrypted notification INVALID_MESSAGE_ID to 172.58.225.113:42450
    2017:12:20-10:15:24 mail pluto[11335]: "L_for admin"[4] 172.58.225.113:42450 #3703: Quick Mode I1 message is unacceptable because it uses a previously used Message ID 0xb80cd678 (perhaps this is a duplicated packet)
    2017:12:20-10:15:24 mail pluto[11335]: "L_for admin"[4] 172.58.225.113:42450 #3703: sending encrypted notification INVALID_MESSAGE_ID to 172.58.225.113:42450
    2017:12:20-10:15:27 mail pluto[11335]: "L_for admin"[4] 172.58.225.113:42450 #3703: Quick Mode I1 message is unacceptable because it uses a previously used Message ID 0xb80cd678 (perhaps this is a duplicated packet)
    2017:12:20-10:15:27 mail pluto[11335]: "L_for admin"[4] 172.58.225.113:42450 #3703: sending encrypted notification INVALID_MESSAGE_ID to 172.58.225.113:42450
    2017:12:20-10:15:27 mail pluto[11335]: "S_vpn-ee5b4a8f [2]" #3658: ignoring Delete SA payload: PROTO_IPSEC_ESP SA(0x1bf4b1cb) not found (maybe expired)
    2017:12:20-10:15:28 mail pluto[11335]: "S_vpn-ee5b4a8f [2]" #3704: initiating Quick Mode PSK+ENCRYPT+TUNNEL+PFS+UP {using isakmp#3658}
    2017:12:20-10:15:28 mail pluto[11335]: "S_vpn-ee5b4a8f [2]" #3704: sent QI2, IPsec SA established {ESP=>0x12ad544a <0xd8e57d57 NATOA=0.0.0.0 DPD}
    2017:12:20-10:15:30 mail pluto[11335]: "L_for admin"[4] 172.58.225.113:42450 #3703: Quick Mode I1 message is unacceptable because it uses a previously used Message ID 0xb80cd678 (perhaps this is a duplicated packet)
    2017:12:20-10:15:30 mail pluto[11335]: "L_for admin"[4] 172.58.225.113:42450 #3703: sending encrypted notification INVALID_MESSAGE_ID to 172.58.225.113:42450
    2017:12:20-10:15:34 mail pluto[11335]: "L_for admin"[4] 172.58.225.113:42450 #3703: Quick Mode I1 message is unacceptable because it uses a previously used Message ID 0xb80cd678 (perhaps this is a duplicated packet)
    2017:12:20-10:15:34 mail pluto[11335]: "L_for admin"[4] 172.58.225.113:42450 #3703: sending encrypted notification INVALID_MESSAGE_ID to 172.58.225.113:42450
    2017:12:20-10:15:34 mail pluto[11335]: "L_for admin"[4] 172.58.225.113:42450 #3703: received Delete SA payload: deleting ISAKMP State #3703
    2017:12:20-10:15:34 mail pluto[11335]: "L_for admin"[4] 172.58.225.113:42450: deleting connection "L_for admin"[4] instance with peer 172.58.225.113 {isakmp=#0/ipsec=#0}
    2017:12:20-10:17:27 mail pluto[11335]: "S_vpn-ee5b4a8f [2]" #3658: ignoring Delete SA payload: PROTO_IPSEC_ESP SA(0x5d0f85b1) not found (maybe expired)
    2017:12:20-10:17:28 mail pluto[11335]: "S_vpn-ee5b4a8f [2]" #3705: initiating Quick Mode PSK+ENCRYPT+TUNNEL+PFS+UP {using isakmp#3658}
    2017:12:20-10:17:28 mail pluto[11335]: "S_vpn-ee5b4a8f [2]" #3705: sent QI2, IPsec SA established {ESP=>0x25ba1b7f <0x0d29f70b NATOA=0.0.0.0 DPD}
    2017:12:20-10:19:27 mail pluto[11335]: "S_vpn-ee5b4a8f [2]" #3658: ignoring Delete SA payload: PROTO_IPSEC_ESP SA(0x9247bbb8) not found (maybe expired)
    2017:12:20-10:19:28 mail pluto[11335]: "S_vpn-ee5b4a8f [2]" #3706: initiating Quick Mode PSK+ENCRYPT+TUNNEL+PFS+UP {using isakmp#3658}
Unfiltered HTML