[Swan] L2TP/IPsec with certificates: INVALID_KEY_INFORMATION

Paul Wouters paul at nohats.ca
Sun May 1 01:36:43 UTC 2016


On Sat, 30 Apr 2016, Sergio Belkin wrote:

> I miss the last lines:
> 
> 000 IPsec SAs: total(1), authenticated(1), anonymous(0)
> 000
> 000 #2: "windows":4500 STATE_QUICK_I2 (sent QI2, IPsec SA established); EVENT_SA_REPLACE_IF_USED in 28012s; newest IPSEC; eroute owner; isakmp#1; idle; import:admin initiate
> 000 #2: "windows" esp.2363e820 at 192.0.2.236 esp.fa8bd25a at 192.168.80.250 ref=0 refhim=4294901761 Traffic: ESPin=0B ESPout=0B! ESPmax=4194303B
> 000 #1: "windows":4500 STATE_MAIN_I4 (ISAKMP SA established); EVENT_SA_REPLACE_IF_USED in 2570s; newest ISAKMP; nodpd; idle; import:admin initiate
> 000
> 000 Bare Shunt list:
> 000

So now xl2tpd needs to be started by you in client mode to do the L2TP
part.

Paul


More information about the Swan mailing list