openl2tp.org
http://forums.openl2tp.org/

how to support multi-clients behind same NAT router?
http://forums.openl2tp.org/viewtopic.php?f=4&t=112
Page 1 of 1

Author:  mwrtest10 [ Wed Aug 15, 2012 12:11 am ]
Post subject:  how to support multi-clients behind same NAT router?

Hi, we're using openl2tp-1.6 with racoon 0.8.0 on a Linux 2.6.31 (Fedora 11) system. We encounter a problem which more than two l2tp clients behind the same NAT router cannot connect successfully. Only one client can connect.

After some study, we found out that there are several patches available in the directory: openl2tp-1.6/ipsec/, however they are for old racoon (0.6.6) and very old Linux (2.6.17) so that they're not useful for us.

Our questions are:
(1) does racoon 0.8.0 and/or linux 2.6.31 requires such kind of patches? (seem yes, because the 2nd client can't connect)
(2) if yes, is there any patch for racoon 0.8.0 and linux 2.6.31 available?

Any help will be very much appreciated!!

Author:  jchapman [ Mon Jan 21, 2013 12:24 pm ]
Post subject:  Re: how to support multi-clients behind same NAT router?

mwrtest10 wrote:
Our questions are:
(1) does racoon 0.8.0 and/or linux 2.6.31 requires such kind of patches? (seem yes, because the 2nd client can't connect)
(2) if yes, is there any patch for racoon 0.8.0 and linux 2.6.31 available?

Sorry for my late reply.
For newer kernels, I suggest use openswan/strongswan instead as these use a different kernel API for IPSec and the newer kernels do a much better job of tracking UDP connection setup. OpenL2TP can be used with *Swan IPSec.

Page 1 of 1 All times are UTC [ DST ]
Powered by phpBB © 2000, 2002, 2005, 2007 phpBB Group
http://www.phpbb.com/