Здравствуйте, прошу оказать поддержку по сложившейся ситуации. Пытаюсь настроить l2tp_ipsec. Не получается. выводы прилагаю:
$ sudo /usr/lib/NetworkManager/nm-l2tp-service --debug
** Message: nm-l2tp-service (version 0.9.8-0quantal1) starting...
connection
name : "connection"
id : "l2tp_ipsec" (s)
uuid : "701385f3-fc79-4498-b880-dde90862a7fd" (s)
type : "vpn" (s)
permissions : ['user:mitos:'] (s)
autoconnect : FALSE (s)
timestamp : 0 (sd)
read-only : FALSE (sd)
zone : NULL (sd)
master : NULL (sd)
slave-type : NULL (sd)
secondaries : [] (sd)
vpn
name : "vpn"
service-type : "org.freedesktop.NetworkManager.l2tp" (s)
user-name : "user_name" (s)
data : [ { 'lcp-echo-interval': 30 }, { 'password-flags': 3 }, { 'ipsec-group-name': GroupVPN }, { 'require-mppe-128': yes }, { 'ipsec-psk': PSK\n }, { 'user': user_name }, { 'mppe-stateful': yes }, { 'refuse-eap': yes }, { 'refuse-chap': yes }, { 'ipsec-enabled': yes }, { 'lcp-echo-failure': 5 }, { 'gateway': name_server }, { 'refuse-pap': yes }, ] (s)
secrets : [ { 'password': secret }, ] (s)
ipv4
name : "ipv4"
method : "auto" (s)
dns : [] (s)
dns-search : [] (sd)
addresses : [] (s)
routes : [] (s)
ignore-auto-routes : FALSE (sd)
ignore-auto-dns : FALSE (sd)
dhcp-client-id : NULL (sd)
dhcp-send-hostname : TRUE (sd)
dhcp-hostname : NULL (sd)
never-default : FALSE (sd)
may-fail : TRUE (sd)
** Message: Use 'ip_server' as a gateway
** Message: Check port 1701
** Message: ipsec enable flag: yes
** Message: starting ipsec
ipsec_setup: Stopping Openswan IPsec...
ipsec_setup: Starting Openswan IPsec 2.6.38...
ipsec_setup: No KLIPS support found while requested, desperately falling back to netkey
ipsec_setup: NETKEY support found. Use protostack=netkey in /etc/ipsec.conf to avoid attempts to use KLIPS. Attempting to continue with NETKEY
whack: Pluto is not running (no "/var/run/pluto/pluto.ctl")
whack: Pluto is not running (no "/var/run/pluto/pluto.ctl")
connect(pluto_ctl) failed: No such file or directory
opening file: /var/run/nm-ipsec-l2tp.7124/ipsec.conf
debugging mode enabled
end of file /var/run/nm-ipsec-l2tp.7124/ipsec.conf
Loading conn nm-ipsec-l2tpd-7124
002 added connection description "nm-ipsec-l2tpd-7124"
loading named conns: nm-ipsec-l2tpd-7124
022 "nm-ipsec-l2tpd-7124": We cannot identify ourselves with either end of this connection.
003 "/var/lib/openswan/ipsec.secrets.inc" line 1: error loading RSA private key file
** (nm-l2tp-service:7124): WARNING **: Possible error in IPSec setup.
** Message: ipsec ready for action
** Message: xl2tpd started with pid 7427
xl2tpd[7427]: setsockopt recvref[30]: Protocol not available
xl2tpd[7427]: This binary does not support kernel L2TP.
xl2tpd[7427]: xl2tpd version xl2tpd-1.3.1 started on ws-2 PID:7427
xl2tpd[7427]: Written by Mark Spencer, Copyright (C) 1998, Adtran, Inc.
xl2tpd[7427]: Forked by Scott Balmos and David Stipp, (C) 2001
xl2tpd[7427]: Inherited by Jeff McAdams, (C) 2002
xl2tpd[7427]: Forked again by Xelerance (
www.xelerance.com) (C) 2006
xl2tpd[7427]: Listening on IP address 0.0.0.0, port 1701
xl2tpd[7427]: get_call: allocating new tunnel for host ip_server, port 1701.
xl2tpd[7427]: Connecting to host ip_server, port 1701
xl2tpd[7427]: control_finish: message type is (null)(0). Tunnel is 0, call is 0.
xl2tpd[7427]: control_finish: sending SCCRQ
xl2tpd[7427]: Maximum retries exceeded for tunnel 52498. Closing.
xl2tpd[7427]: Connection 0 closed to ip_server, port 1701 (Timeout)
** (nm-l2tp-service:7124): WARNING **: pppd timeout. Looks like pppd didn't initialize our dbus module
xl2tpd[7427]: Unable to deliver closing message for tunnel 52498. Destroying anyway.
** Message: Terminated l2tp daemon with PID 7427.
xl2tpd[7427]: death_handler: Fatal signal 15 received
** (nm-l2tp-service:7124): WARNING **: xl2tpd exited with error code 1
tail -f /var/log/syslog
Aug 13 17:27:05 ws-2 sudo: pam_ecryptfs: pam_sm_authenticate: /home/mitos is already mounted
Aug 13 17:27:31 ws-2 NetworkManager[1013]: <info> VPN service 'l2tp' appeared; activating connections
Aug 13 17:28:26 ws-2 NetworkManager[1013]: <info> VPN plugin state changed: starting (3)
Aug 13 17:28:27 ws-2 ipsec_setup: Stopping Openswan IPsec...
Aug 13 17:28:29 ws-2 kernel: [ 8268.628281] NET: Unregistered protocol family 15
Aug 13 17:28:29 ws-2 ipsec_setup: ...Openswan IPsec stopped
Aug 13 17:28:29 ws-2 ipsec_setup: Starting Openswan IPsec 2.6.38...
Aug 13 17:28:29 ws-2 ipsec_setup: Using KLIPS/legacy stack
Aug 13 17:28:30 ws-2 ipsec_setup: No KLIPS support found while requested, desperately falling back to netkey
Aug 13 17:28:30 ws-2 ipsec_setup: NETKEY support found. Use protostack=netkey in /etc/ipsec.conf to avoid attempts to use KLIPS. Attempting to continue with NETKEY
Aug 13 17:28:30 ws-2 kernel: [ 8269.132438] NET: Registered protocol family 15
Aug 13 17:28:30 ws-2 ipsec_setup: Using NETKEY(XFRM) stack
Aug 13 17:28:30 ws-2 kernel: [ 8269.296992] Initializing XFRM netlink socket
Aug 13 17:28:30 ws-2 ipsec_setup: ...Openswan IPsec started
Aug 13 17:28:30 ws-2 ipsec_starter[7370]: connect(pluto_ctl) failed: No such file or directory
Aug 13 17:28:30 ws-2 ipsec__plutorun: adjusting ipsec.d to /etc/ipsec.d
Aug 13 17:28:30 ws-2 pluto: adjusting ipsec.d to /etc/ipsec.d
Aug 13 17:28:30 ws-2 ipsec__plutorun: 003 "/etc/ipsec.secrets" line 1: unterminated string
Aug 13 17:28:30 ws-2 ipsec__plutorun: 003 "/etc/ipsec.secrets" line 2: unterminated string
Aug 13 17:28:30 ws-2 ipsec__plutorun: 003 ERROR "/etc/ipsec.secrets" line 2: index """ illegal (non-DNS-name) character in name
Aug 13 17:28:30 ws-2 ipsec__plutorun: 003 "/etc/ipsec.secrets" line 2: unexpected end of id list
Aug 13 17:28:30 ws-2 NetworkManager[1013]: <info> VPN connection 'l2tp_ipsec' (Connect) reply received.
Aug 13 17:28:40 ws-2 NetworkManager[1013]: <warn> VPN plugin failed: 7
Aug 13 17:29:11 ws-2 NetworkManager[1013]: <warn> VPN connection 'l2tp_ipsec' (IP Config Get) timeout exceeded.
Aug 13 17:29:11 ws-2 NetworkManager[1013]: <info> Policy set 'mitos' (wlan0) as default for IPv4 routing and DNS.
Aug 13 17:29:31 ws-2 NetworkManager[1013]: <info> VPN service 'l2tp' disappeared
lsb_release -a
No LSB modules are available.
Distributor ID: LinuxMint
Description: Linux Mint 15 Olivia
Release: 15
Codename: olivia
uname -a
Linux ws-2 3.8.0-27-generic #40-Ubuntu SMP Tue Jul 9 00:19:35 UTC 2013 i686 i686 i686 GNU/Linux