L2TP over IPsec VPN Manager

Error 3 ipsec setup start failed

Bug #793542 reported by Erasmo
6
This bug affects 1 person
Affects Status Importance Assigned to Milestone
L2TP over IPsec VPN Manager
Fix Released
Low
Werner Jaeger
L2TP over IPsec VPN Manager 1.0.0

Bug Description

i do not conect my vpn.

Stopping xl2tpd: xl2tpd.
xl2tpd[1238]: death_handler: Fatal signal 15 received
openswan failed to exec the requested action - the following error occured:
can not load config '/etc/ipsec.conf': /etc/ipsec.conf:37: syntax error, unexpected STRING, expecting EOL [Jos\xC3\xA9]
[ERROR 3] Command 'ipsec setup start' failed and exited with given error code

Erasmo (erasmojpo)
Changed in l2tp-ipsec-vpn:
assignee: nobody → Erasmo (erasmojpo)
Revision history for this message
Werner Jaeger (werner-jaeger) wrote :

To further investigate this bug, could you please provide me the content of the file /etc/ipsec.conf ?

Revision history for this message
Erasmo (erasmojpo) wrote : Re: [Bug 793542] Re: Error 3 ipsec setup start failed

Hello Werner my english is not so good. I am sending to you the file
ipsec.conf:

# /etc/ipsec.conf - Openswan IPsec configuration file
# $Id$

# Manual: ipsec.conf(5)

# Created: Mon Jun 6 11:07:56 2011
# by: The L2TP IPsec VPN Manager application version 0.9.9
#
# WARNING! All changes made in this file will be lost!

version 2.0 # conforms to second version of ipsec.conf specification

config setup
 # plutodebug="parsing emitting control private"
 plutodebug=none
 strictcrlpolicy=no
 nat_traversal=yes
 interfaces=%defaultroute
 oe=off
 # which IPsec stack to use. netkey,klips,mast,auto or none
 protostack=netkey

conn %default
 keyingtries=3
 pfs=no
 rekey=yes
 type=transport
 left=%defaultroute
 leftprotoport=17/1701
 rightprotoport=17/1701

# Add connections here.

conn Brisa
   authby=rsasig
   leftcert=Erasmo Jos\xC3\xA9 Pereira de Oliveira.pem
 right=portalegre.brisanet.com.br
 <email address hidden>"
 auto=add

Em Tue, 2011-06-07 às 15:38 +0000, Werner Jaeger escreveu:
> To further investigate this bug, could you please provide me the content
> of the file /etc/ipsec.conf ?
>

--
Erasmo José Pereira de Oliveira
Usuário Linux # 475516
Usuário Ubuntu # 23164
Contato: (84) 9977-2518

Revision history for this message
Werner Jaeger (werner-jaeger) wrote :

Hi,

my Spanish is even worse, so I continue with English ...

As root please try to rename the file

/etc/ipsec.d/certs.d/Jos\xC3\xA9 Pereira de Oliveira.pem

to something with ASCII characters only e.g "Jose Pereira de Oliveira.pem"

Then right click the system tray icon, select "Edit connections", double
click "Brisa" and tick the new file name in the listbox below "Use
Certificate for authentication".

Let me know if this solves the problem.

Regards,

Werner

On 06/08/2011 12:20 AM, Erasmo wrote:
> Hello Werner my english is not so good. I am sending to you the file
> ipsec.conf:
>
> # /etc/ipsec.conf - Openswan IPsec configuration file
> # $Id$
>
> # Manual: ipsec.conf(5)
>
> # Created: Mon Jun 6 11:07:56 2011
> # by: The L2TP IPsec VPN Manager application version 0.9.9
> #
> # WARNING! All changes made in this file will be lost!
>
> version 2.0 # conforms to second version of ipsec.conf specification
>
> config setup
> # plutodebug="parsing emitting control private"
> plutodebug=none
> strictcrlpolicy=no
> nat_traversal=yes
> interfaces=%defaultroute
> oe=off
> # which IPsec stack to use. netkey,klips,mast,auto or none
> protostack=netkey
>
> conn %default
> keyingtries=3
> pfs=no
> rekey=yes
> type=transport
> left=%defaultroute
> leftprotoport=17/1701
> rightprotoport=17/1701
>
> # Add connections here.
>
>
> conn Brisa
> authby=rsasig
> leftcert=Erasmo Jos\xC3\xA9 Pereira de Oliveira.pem
> right=portalegre.brisanet.com.br
> <email address hidden>"
> auto=add
>
> Em Tue, 2011-06-07 às 15:38 +0000, Werner Jaeger escreveu:
>> To further investigate this bug, could you please provide me the content
>> of the file /etc/ipsec.conf ?
>>

Revision history for this message
Erasmo (erasmojpo) wrote :

This file does not exist in this place, on /etc/ipsec.d/ does not exist
the folder certs.d the folder that exist is only certs not certs.d

Em Wed, 2011-06-08 às 14:15 +0000, Werner Jaeger escreveu:
> Hi,
>
> my Spanish is even worse, so I continue with English ...
>
> As root please try to rename the file
>
> /etc/ipsec.d/certs.d/Jos\xC3\xA9 Pereira de Oliveira.pem
>
> to something with ASCII characters only e.g "Jose Pereira de
> Oliveira.pem"
>
> Then right click the system tray icon, select "Edit connections", double
> click "Brisa" and tick the new file name in the listbox below "Use
> Certificate for authentication".
>
> Let me know if this solves the problem.
>
>
> Regards,
>
> Werner
>
>
> On 06/08/2011 12:20 AM, Erasmo wrote:
> > Hello Werner my english is not so good. I am sending to you the file
> > ipsec.conf:
> >
> > # /etc/ipsec.conf - Openswan IPsec configuration file
> > # $Id$
> >
> > # Manual: ipsec.conf(5)
> >
> > # Created: Mon Jun 6 11:07:56 2011
> > # by: The L2TP IPsec VPN Manager application version 0.9.9
> > #
> > # WARNING! All changes made in this file will be lost!
> >
> > version 2.0 # conforms to second version of ipsec.conf specification
> >
> > config setup
> > # plutodebug="parsing emitting control private"
> > plutodebug=none
> > strictcrlpolicy=no
> > nat_traversal=yes
> > interfaces=%defaultroute
> > oe=off
> > # which IPsec stack to use. netkey,klips,mast,auto or none
> > protostack=netkey
> >
> > conn %default
> > keyingtries=3
> > pfs=no
> > rekey=yes
> > type=transport
> > left=%defaultroute
> > leftprotoport=17/1701
> > rightprotoport=17/1701
> >
> > # Add connections here.
> >
> >
> > conn Brisa
> > authby=rsasig
> > leftcert=Erasmo Jos\xC3\xA9 Pereira de Oliveira.pem
> > right=portalegre.brisanet.com.br
> > <email address hidden>"
> > auto=add
> >
> > Em Tue, 2011-06-07 às 15:38 +0000, Werner Jaeger escreveu:
> >> To further investigate this bug, could you please provide me the content
> >> of the file /etc/ipsec.conf ?
> >>
>

--
Erasmo José Pereira de Oliveira
Usuário Linux # 475516
Usuário Ubuntu # 23164
Contato: (84) 9977-2518

Revision history for this message
Erasmo (erasmojpo) wrote :

After rename this file ...

ipsec_setup: Starting Openswan IPsec U2.6.28/K2.6.38-8-generic...
recvref[22]: Protocol not available
xl2tpd[5805]: This binary does not support kernel L2TP.
Starting xl2tpd: xl2tpd.
xl2tpd[5810]: xl2tpd version xl2tpd-1.2.6 started on erasmo-Inspiron-1545 PID:5810
xl2tpd[5810]: Written by Mark Spencer, Copyright (C) 1998, Adtran, Inc.
xl2tpd[5810]: Forked by Scott Balmos and David Stipp, (C) 2001
xl2tpd[5810]: Inherited by Jeff McAdams, (C) 2002
xl2tpd[5810]: Forked again by Xelerance (www.xelerance.com) (C) 2006
xl2tpd[5810]: Listening on IP address 0.0.0.0, port 1701
003 NAT-Traversal: Trying new style NAT-T
003 NAT-Traversal: ESPINUDP(1) setup failed for new style NAT-T family IPv4 (errno=19)
003 NAT-Traversal: Trying old style NAT-T

Last command timed out
Stopping xl2tpd: xl2tpd.
xl2tpd[5810]: death_handler: Fatal signal 15 received
ipsec_setup: Stopping Openswan IPsec...

Werner Jaeger (werner-jaeger)
Changed in l2tp-ipsec-vpn:
status: New → In Progress
importance: Undecided → Low
milestone: none → 1.0.0
assignee: Erasmo (erasmojpo) → Werner Jaeger (werner-jaeger)
Werner Jaeger (werner-jaeger)
Changed in l2tp-ipsec-vpn:
status: In Progress → Fix Committed
Werner Jaeger (werner-jaeger)
Changed in l2tp-ipsec-vpn:
status: Fix Committed → Fix Released
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.