centos ipsec求助
環境是centos6.0 l2tp+ipsec
問題是現在ipsec不生效 把ipsec服務關掉 vpn還是能夠連上
xl2tpd rp-l2tp openswan 怎麼樣設定強制使用ipsec呢 如果不的話 數據是不是都沒有加密
《解決方案》
有做過的沒 給解答一下 明天上架了 現在vpn撥號 ipsec好像完全沒起作用
# ipsec verify
Checking your system to see if IPsec got installed and started correctly:
Version check and ipsec on-path
Linux Openswan U2.6.35/K2.6.32-71.el6.x86_64 (netkey)
Checking for IPsec support in kernel
SAref kernel support
NETKEY: Testing XFRM related proc values
Testing against enforced SElinux mode
Checking that pluto is running
Pluto listening for IKE on udp 500
Pluto listening for NAT-T on udp 4500
Two or more interfaces found, checking IP forwarding
Checking NAT and MASQUERADEing
Checking for 'ip' command
Checking /bin/sh is not /bin/dash
Checking for 'iptables' command
Opportunistic Encryption Support
《解決方案》
測試 ipsec應該沒什麼問題呀
listen-addr = 192.168.10.2
ipsec saref = yes
ip range = 172.16.10.200-172.168.10.220
local ip = 172.16.10.2
require chap = yes
refuse pap = yes
require authentication = yes
name = xl2tpd
ppp debug = yes
pppoptfile = /etc/ppp/options.xl2tpd
length bit = yes
《解決方案》
總覺得是xl2tp.conf的問題