l2tpvpn-docker-pi icon indicating copy to clipboard operation
l2tpvpn-docker-pi copied to clipboard

Published 20 hours ago verified publisher icon ritazh

Does not work on clean Raspbian Stretch, had to install Jessie

Open lukdz opened this issue 6 years ago • 0 comments

I follow your tutorial, but it didnt work, then I try to install your Docker, but it also didnt work. MacBook/Android keept failing to connect, and raspberry after delay declared peer dead. When I tired with Jessie it work first time.

Log from Stretch:

root@raspberrypi:/home/pi# tail -f /var/log/auth.log
May  7 16:33:03 raspberrypi lightdm: pam_unix(lightdm-autologin:session): session opened for user pi by (uid=0)
May  7 16:33:03 raspberrypi systemd-logind[330]: New session c2 of user pi.
May  7 16:33:09 raspberrypi polkitd(authority=local): Registered Authentication Agent for unix-session:c2 (system bus name :1.13 [lxpolkit], object path /org/freedesktop/PolicyKit1/AuthenticationAgent, locale en_GB.UTF-8)
May  7 16:33:39 raspberrypi sshd[1322]: Accepted publickey for pi from 192.168.1.10 port 55842 ssh2: RSA SHA256:
May  7 16:33:39 raspberrypi sshd[1322]: pam_unix(sshd:session): session opened for user pi by (uid=0)
May  7 16:33:39 raspberrypi systemd-logind[330]: New session c3 of user pi.
May  7 16:33:51 raspberrypi su[1351]: Successful su for root by pi
May  7 16:33:51 raspberrypi su[1351]: + /dev/pts/0 pi:root
May  7 16:33:51 raspberrypi su[1351]: pam_unix(su:session): session opened for user root by pi(uid=1000)
May  7 16:33:51 raspberrypi su[1351]: pam_systemd(su:session): Cannot create session: Already running in a session
May  7 16:34:18 raspberrypi pluto[832]: packet from XXX.XXX.XXX.XXX:41217: received Vendor ID payload [RFC 3947] method set to=115
May  7 16:34:18 raspberrypi pluto[832]: packet from XXX.XXX.XXX.XXX:41217: received Vendor ID payload [draft-ietf-ipsec-nat-t-ike-02] meth=107, but already using method 115
May  7 16:34:18 raspberrypi pluto[832]: packet from XXX.XXX.XXX.XXX:41217: received Vendor ID payload [draft-ietf-ipsec-nat-t-ike-02_n] meth=106, but already using method 115
May  7 16:34:18 raspberrypi pluto[832]: packet from XXX.XXX.XXX.XXX:41217: received Vendor ID payload [draft-ietf-ipsec-nat-t-ike-00]
May  7 16:34:18 raspberrypi pluto[832]: packet from XXX.XXX.XXX.XXX:41217: ignoring Vendor ID payload [FRAGMENTATION 80000000]
May  7 16:34:18 raspberrypi pluto[832]: packet from XXX.XXX.XXX.XXX:41217: received Vendor ID payload [Dead Peer Detection]
May  7 16:34:18 raspberrypi pluto[832]: "L2TP-PSK-NAT"[1] XXX.XXX.XXX.XXX #1: responding to Main Mode from unknown peer XXX.XXX.XXX.XXX
May  7 16:34:18 raspberrypi pluto[832]: "L2TP-PSK-NAT"[1] XXX.XXX.XXX.XXX #1: transition from state STATE_MAIN_R0 to state STATE_MAIN_R1
May  7 16:34:18 raspberrypi pluto[832]: "L2TP-PSK-NAT"[1] XXX.XXX.XXX.XXX #1: STATE_MAIN_R1: sent MR1, expecting MI2
May  7 16:34:18 raspberrypi pluto[832]: "L2TP-PSK-NAT"[1] XXX.XXX.XXX.XXX #1: NAT-Traversal: Result using draft-ietf-ipsec-nat-t-ike (MacOS X): both are NATed
May  7 16:34:18 raspberrypi pluto[832]: "L2TP-PSK-NAT"[1] XXX.XXX.XXX.XXX #1: transition from state STATE_MAIN_R1 to state STATE_MAIN_R2
May  7 16:34:18 raspberrypi pluto[832]: "L2TP-PSK-NAT"[1] XXX.XXX.XXX.XXX #1: STATE_MAIN_R2: sent MR2, expecting MI3
May  7 16:34:18 raspberrypi pluto[832]: "L2TP-PSK-NAT"[1] XXX.XXX.XXX.XXX #1: Main mode peer ID is ID_IPV4_ADDR: '10.114.94.150'
May  7 16:34:18 raspberrypi pluto[832]: "L2TP-PSK-NAT"[1] XXX.XXX.XXX.XXX #1: switched from "L2TP-PSK-NAT" to "L2TP-PSK-NAT"
May  7 16:34:18 raspberrypi pluto[832]: "L2TP-PSK-NAT"[2] XXX.XXX.XXX.XXX #1: deleting connection "L2TP-PSK-NAT" instance with peer XXX.XXX.XXX.XXX {isakmp=#0/ipsec=#0}
May  7 16:34:18 raspberrypi pluto[832]: "L2TP-PSK-NAT"[2] XXX.XXX.XXX.XXX #1: transition from state STATE_MAIN_R2 to state STATE_MAIN_R3
May  7 16:34:18 raspberrypi pluto[832]: "L2TP-PSK-NAT"[2] XXX.XXX.XXX.XXX #1: new NAT mapping for #1, was XXX.XXX.XXX.XXX:41217, now XXX.XXX.XXX.XXX:41218
May  7 16:34:18 raspberrypi pluto[832]: "L2TP-PSK-NAT"[2] XXX.XXX.XXX.XXX #1: STATE_MAIN_R3: sent MR3, ISAKMP SA established {auth=OAKLEY_PRESHARED_KEY cipher=aes_256 prf=OAKLEY_SHA2_256 group=modp1024}
May  7 16:34:18 raspberrypi pluto[832]: "L2TP-PSK-NAT"[2] XXX.XXX.XXX.XXX #1: Dead Peer Detection (RFC 3706): enabled
May  7 16:34:18 raspberrypi pluto[832]: "L2TP-PSK-NAT"[2] XXX.XXX.XXX.XXX #1: ignoring informational payload, type IPSEC_INITIAL_CONTACT msgid=00000000
May  7 16:34:18 raspberrypi pluto[832]: "L2TP-PSK-NAT"[2] XXX.XXX.XXX.XXX #1: received and ignored informational message
May  7 16:34:19 raspberrypi pluto[832]: "L2TP-PSK-NAT"[2] XXX.XXX.XXX.XXX #1: the peer proposed: 83.7.227.238/32:17/1701 -> 10.114.94.150/32:17/0
May  7 16:34:19 raspberrypi pluto[832]: "L2TP-PSK-NAT"[2] XXX.XXX.XXX.XXX #2: responding to Quick Mode proposal {msgid:331e06f2}
May  7 16:34:19 raspberrypi pluto[832]: "L2TP-PSK-NAT"[2] XXX.XXX.XXX.XXX #2:     us: 192.168.1.5<192.168.1.5>:17/1701
May  7 16:34:19 raspberrypi pluto[832]: "L2TP-PSK-NAT"[2] XXX.XXX.XXX.XXX #2:   them: XXX.XXX.XXX.XXX[10.114.94.150]:17/0===10.114.94.150/32
May  7 16:34:19 raspberrypi pluto[832]: "L2TP-PSK-NAT"[2] XXX.XXX.XXX.XXX #2: transition from state STATE_QUICK_R0 to state STATE_QUICK_R1
May  7 16:34:19 raspberrypi pluto[832]: "L2TP-PSK-NAT"[2] XXX.XXX.XXX.XXX #2: STATE_QUICK_R1: sent QR1, inbound IPsec SA installed, expecting QI2
May  7 16:34:19 raspberrypi pluto[832]: "L2TP-PSK-NAT"[2] XXX.XXX.XXX.XXX #2: Dead Peer Detection (RFC 3706): enabled
May  7 16:34:19 raspberrypi pluto[832]: "L2TP-PSK-NAT"[2] XXX.XXX.XXX.XXX #2: transition from state STATE_QUICK_R1 to state STATE_QUICK_R2
May  7 16:34:19 raspberrypi pluto[832]: "L2TP-PSK-NAT"[2] XXX.XXX.XXX.XXX #2: STATE_QUICK_R2: IPsec SA established transport mode {ESP/NAT=>0x093b945b <0xca883fc1 xfrm=AES_256-HMAC_SHA2_256 NATOA=none NATD=XXX.XXX.XXX.XXX:41218 DPD=enabled}
May  7 16:37:19 raspberrypi pluto[832]: "L2TP-PSK-NAT"[2] XXX.XXX.XXX.XXX #1: DPD: No response from peer - declaring peer dead
May  7 16:37:19 raspberrypi pluto[832]: "L2TP-PSK-NAT"[2] XXX.XXX.XXX.XXX #1: DPD: Clearing Connection
May  7 16:37:19 raspberrypi pluto[832]: "L2TP-PSK-NAT" #2: deleting state (STATE_QUICK_R2)
May  7 16:37:19 raspberrypi pluto[832]: "L2TP-PSK-NAT" #1: deleting state (STATE_MAIN_R3)
May  7 16:37:19 raspberrypi pluto[832]: "L2TP-PSK-NAT"[2] XXX.XXX.XXX.XXX: deleting connection "L2TP-PSK-NAT" instance with peer XXX.XXX.XXX.XXX {isakmp=#0/ipsec=#0}

lukdz avatar May 10 '18 20:05 lukdz