L2TP VPN Server on Raspberry Pi

0

I setup a L2TP VPN server on my Raspberry PI. When I tried to connect to it from my iPhone, I got the following error in the /var/log/auth.log file:

Jan 3 10:53:08 raspberrypi pluto[4116]: ERROR: asynchronous network error report on eth0 (sport=4500) for message to 172.56.31.191 port 46424, complainant 172.56.31.191: Connection refused [errno 111, origin ICMP type 3 code 3 (not authenticated)]

What does this mean, and how can I fix this issue?

Ahmed Soliman

Posted 2017-01-03T21:31:15.407

Reputation: 1

Someone had a similar question on the openswan mailing list several years ago. Good luck; I found setting up L2TP w/ IPSec much harder than openvpn.

– Hydraxan14 – 2017-01-03T23:23:57.123

Also, the latest strongswan version for Raspbian 8 is 5.2.1. pluto was removed in 5.0.0, and charon handles IKEv1 now. You might want to set up a newer version of strongswan before proceeding.

– Hydraxan14 – 2017-01-03T23:29:26.210

I never setup strongswan I am using openswan. Should i use strongswan instead? Is there a big difference in the configurations? – Ahmed Soliman – 2017-01-03T23:30:41.347

Answers

-1

That inbound port number (46424) is the problem.

Change your left port to 17/%any instead of 17/1701.

Make the change in the /etc/ipsec.conf file. Value is the leftprotoport.

Khanh

Posted 2017-01-03T21:31:15.407

Reputation: 1

Sorry that was a bit vague. Make the change in the /etc/ipsec.conf file. Value is the leftprotoport. – Khanh – 2017-03-25T19:26:05.880

4Please edit your answer and explain it properly do not confuse users, be clear – yass – 2017-03-25T19:39:37.187

Asked: 2017-01-03T21:31:15.407

Viewed: 960 times

Active: 2017-03-25T21:58:35.713