VPN L2TP

1. VPN L2TP

Julian Soares
juliansoares

(usa Debian)

Enviado em 22/01/2021 - 16:25h

Pessoal preciso de uma ajuda com VPN, criei uma nova conexão L2TP, coloquei gateway, user e senha (que recebi do cliente) porém dá este erro no syslog:

Jan 22 16:23:20 zeus NetworkManager[17573]: Stopping strongSwan IPsec failed: starter is not running
Jan 22 16:23:23 zeus NetworkManager[17573]: Starting strongSwan 5.7.2 IPsec [starter]...
Jan 22 16:23:23 zeus NetworkManager[17573]: Loading config setup
Jan 22 16:23:23 zeus NetworkManager[17573]: Loading conn 'bd7f39e9-fe6a-496d-b7f4-2803d762051f'
Jan 22 16:23:23 zeus NetworkManager[17573]: found netkey IPsec stack
Jan 22 16:23:23 zeus charon: 00[DMN] Starting IKE charon daemon (strongSwan 5.7.2, Linux 4.19.0-13-amd64, x86_64)
Jan 22 16:23:23 zeus charon: 00[CFG] loading ca certificates from '/etc/ipsec.d/cacerts'
Jan 22 16:23:23 zeus charon: 00[CFG] loading aa certificates from '/etc/ipsec.d/aacerts'
Jan 22 16:23:23 zeus charon: 00[CFG] loading ocsp signer certificates from '/etc/ipsec.d/ocspcerts'
Jan 22 16:23:23 zeus charon: 00[CFG] loading attribute certificates from '/etc/ipsec.d/acerts'
Jan 22 16:23:23 zeus charon: 00[CFG] loading crls from '/etc/ipsec.d/crls'
Jan 22 16:23:23 zeus charon: 00[CFG] loading secrets from '/etc/ipsec.secrets'
Jan 22 16:23:23 zeus charon: 00[CFG] expanding file expression '/var/lib/strongswan/ipsec.secrets.inc' failed
Jan 22 16:23:23 zeus charon: 00[CFG] loading secrets from '/etc/ipsec.d/nm-l2tp-ipsec-bd7f39e9-fe6a-496d-b7f4-2803d762051f.secrets'
Jan 22 16:23:23 zeus charon: 00[CFG] loaded IKE secret for (IP_EXTERNO)
Jan 22 16:23:23 zeus charon: 00[LIB] loaded plugins: charon aesni aes rc2 sha2 sha1 md5 mgf1 random nonce x509 revocation constraints pubkey pkcs1 pkcs7 pkcs8 pkcs12 pgp dnskey sshkey pem openssl fips-prf gmp agent xcbc hmac gcm attr kernel-netlink resolve socket-default connmark stroke updown counters
Jan 22 16:23:23 zeus charon: 00[LIB] dropped capabilities, running as uid 0, gid 0
Jan 22 16:23:23 zeus charon: 00[JOB] spawning 16 worker threads
Jan 22 16:23:23 zeus charon: 05[CFG] received stroke: add connection 'bd7f39e9-fe6a-496d-b7f4-2803d762051f'
Jan 22 16:23:23 zeus charon: 05[CFG] added configuration 'bd7f39e9-fe6a-496d-b7f4-2803d762051f'
Jan 22 16:23:24 zeus charon: 08[CFG] rereading secrets
Jan 22 16:23:24 zeus charon: 08[CFG] loading secrets from '/etc/ipsec.secrets'
Jan 22 16:23:24 zeus charon: 08[CFG] expanding file expression '/var/lib/strongswan/ipsec.secrets.inc' failed
Jan 22 16:23:24 zeus charon: 08[CFG] loading secrets from '/etc/ipsec.d/nm-l2tp-ipsec-bd7f39e9-fe6a-496d-b7f4-2803d762051f.secrets'
Jan 22 16:23:24 zeus charon: 08[CFG] loaded IKE secret for (IP_EXTERNO)
Jan 22 16:23:24 zeus charon: 10[CFG] received stroke: initiate 'bd7f39e9-fe6a-496d-b7f4-2803d762051f'
Jan 22 16:23:24 zeus charon: 12[IKE] initiating Main Mode IKE_SA bd7f39e9-fe6a-496d-b7f4-2803d762051f[1] to (IP_EXTERNO)
Jan 22 16:23:24 zeus charon: 12[ENC] generating ID_PROT request 0 [ SA V V V V V ]
Jan 22 16:23:24 zeus charon: 12[NET] sending packet: from 192.168.15.58[500] to (IP_EXTERNO)[500] (204 bytes)
Jan 22 16:23:24 zeus charon: 13[NET] received packet: from(IP_EXTERNO)[500] to (IP_EXTERNO)[500] (96 bytes)
Jan 22 16:23:24 zeus charon: 13[ENC] parsed INFORMATIONAL_V1 request 0 [ N(NO_PROP) ]
Jan 22 16:23:24 zeus charon: 13[IKE] received NO_PROPOSAL_CHOSEN error notify
Jan 22 16:23:24 zeus NetworkManager[17573]: initiating Main Mode IKE_SA bd7f39e9-fe6a-496d-b7f4-2803d762051f[1] to 18.229.216.97
Jan 22 16:23:24 zeus NetworkManager[17573]: generating ID_PROT request 0 [ SA V V V V V ]
Jan 22 16:23:24 zeus NetworkManager[17573]: sending packet: from 192.168.15.58[500] to (IP_EXTERNO)[500] (204 bytes)
Jan 22 16:23:24 zeus NetworkManager[17573]: received packet: from (IP_EXTERNO)[500] to 192.168.15.58[500] (96 bytes)
Jan 22 16:23:24 zeus NetworkManager[17573]: parsed INFORMATIONAL_V1 request 0 [ N(NO_PROP) ]
Jan 22 16:23:24 zeus NetworkManager[17573]: received NO_PROPOSAL_CHOSEN error notify
Jan 22 16:23:24 zeus NetworkManager[17573]: establishing connection 'bd7f39e9-fe6a-496d-b7f4-2803d762051f' failed
Jan 22 16:23:24 zeus NetworkManager[17573]: Stopping strongSwan IPsec...
Jan 22 16:23:24 zeus charon: 00[DMN] signal of type SIGINT received. Shutting down
Jan 22 16:23:24 zeus nm-l2tp-service[21438]: g_dbus_method_invocation_take_error: assertion 'error != NULL' failed
Jan 22 16:23:24 zeus NetworkManager[17573]: <info> [1611343404.3932] vpn-connection[0x55d1a5d82170,bd7f39e9-fe6a-496d-b7f4-2803d762051f,"Midway",0]: VPN plugin: state changed: stopped (6)
Jan 22 16:23:24 zeus NetworkManager[17573]: <info> [1611343404.3955] vpn-connection[0x55d1a5d82170,bd7f39e9-fe6a-496d-b7f4-2803d762051f,"Midway",0]: VPN service disappeared
Jan 22 16:23:24 zeus NetworkManager[17573]: <warn> [1611343404.3964] vpn-connection[0x55d1a5d82170,bd7f39e9-fe6a-496d-b7f4-2803d762051f,"Midway",0]: VPN connection: failed to connect: 'Message recipient disconnected from message bus without replying'
Jan 22 16:23:24 zeus gnome-shell[1892]: Object NM.ActiveConnection (0x558fd6be25a0), has been already deallocated — impossible to get any property from it. This might be caused by the object having been destroyed from C code using something such as destroy(), dispose(), or remove() vfuncs.
Jan 22 16:23:24 zeus org.gnome.Shell.desktop[1892]: == Stack trace for context 0x558fd6f2a240 ==
Jan 22 16:23:24 zeus org.gnome.Shell.desktop[1892]: #0 558fd94b1998 i resource:///org/gnome/shell/ui/status/network.js:1335 (7fd5b41e78b0 @ 56)
Jan 22 16:23:24 zeus org.gnome.Shell.desktop[1892]: #1 7fffbfc5d610 b resource:///org/gnome/gjs/modules/_legacy.js:82 (7fd5b48b0b80 @ 71)
Jan 22 16:23:24 zeus org.gnome.Shell.desktop[1892]: #2 558fd94b1900 i resource:///org/gnome/shell/ui/status/network.js:1352 (7fd5b41e7940 @ 113)
Jan 22 16:23:24 zeus org.gnome.Shell.desktop[1892]: #3 7fffbfc5e580 b resource:///org/gnome/gjs/modules/_legacy.js:82 (7fd5b48b0b80 @ 71)
Jan 22 16:23:24 zeus org.gnome.Shell.desktop[1892]: #4 558fd94b1860 i resource:///org/gnome/shell/ui/status/network.js:2051 (7fd5b41eaaf0 @ 216)
Jan 22 16:23:24 zeus org.gnome.Shell.desktop[1892]: #5 7fffbfc5f500 b resource:///org/gnome/gjs/modules/_legacy.js:82 (7fd5b48b0b80 @ 71)
Jan 22 16:23:24 zeus org.gnome.Shell.desktop[1892]: #6 7fffbfc60120 b self-hosted:977 (7fd5b48f01f0 @ 413)
Jan 22 16:23:24 zeus org.gnome.Shell.desktop[1892]: #7 7fffbfc60210 b resource:///org/gnome/gjs/modules/signals.js:128 (7fd5b48c18b0 @ 386)
Jan 22 16:23:24 zeus org.gnome.Shell.desktop[1892]: #8 558fd94b17d8 i resource:///org/gnome/shell/ui/status/network.js:211 (7fd5b41e24c0 @ 37)
Jan 22 16:23:24 zeus org.gnome.Shell.desktop[1892]: #9 7fffbfc61180 b resource:///org/gnome/gjs/modules/_legacy.js:82 (7fd5b48b0b80 @ 71)
Jan 22 16:23:24 zeus org.gnome.Shell.desktop[1892]: #10 558fd94b1760 i resource:///org/gnome/shell/ui/status/network.js:280 (7fd5b41e2a60 @ 12)
Jan 22 16:23:24 zeus org.gnome.Shell.desktop[1892]: #11 7fffbfc62120 b resource:///org/gnome/gjs/modules/signals.js:128 (7fd5b48c18b0 @ 386)
Jan 22 16:23:24 zeus org.gnome.Shell.desktop[1892]: #12 558fd94b16d0 i resource:///org/gnome/shell/ui/status/network.js:1432 (7fd5b41e7c10 @ 98)
Jan 22 16:23:24 zeus org.gnome.Shell.desktop[1892]: #13 7fffbfc630b0 b resource:///org/gnome/gjs/modules/_legacy.js:82 (7fd5b48b0b80 @ 71)
Jan 22 16:23:24 zeus org.gnome.Shell.desktop[1892]: #14 558fd94b1610 i self-hosted:981 (7fd5b48f01f0 @ 474)
Jan 22 16:23:24 zeus org.gnome.Shell.desktop[1892]: == Stack trace for context 0x558fd6f2a240 ==
Jan 22 16:23:24 zeus org.gnome.Shell.desktop[1892]: #0 558fd94b1b90 i resource:///org/gnome/shell/ui/status/network.js:1335 (7fd5b41e78b0 @ 56)
Jan 22 16:23:24 zeus org.gnome.Shell.desktop[1892]: #1 7fffbfc5ba90 b resource:///org/gnome/gjs/modules/_legacy.js:82 (7fd5b48b0b80 @ 71)
Jan 22 16:23:24 zeus org.gnome.Shell.desktop[1892]: #2 558fd94b1af8 i resource:///org/gnome/shell/ui/status/network.js:1352 (7fd5b41e7940 @ 113)
Jan 22 16:23:24 zeus org.gnome.Shell.desktop[1892]: #3 7fffbfc5ca00 b resource:///org/gnome/gjs/modules/_legacy.js:82 (7fd5b48b0b80 @ 71)
Jan 22 16:23:24 zeus org.gnome.Shell.desktop[1892]: #4 558fd94b1a58 i resource:///org/gnome/shell/ui/status/network.js:2051 (7fd5b41eaaf0 @ 216)
Jan 22 16:23:24 zeus org.gnome.Shell.desktop[1892]: #5 7fffbfc5d980 b resource:///org/gnome/gjs/modules/_legacy.js:82 (7fd5b48b0b80 @ 71)
Jan 22 16:23:24 zeus org.gnome.Shell.desktop[1892]: #6 7fffbfc5da40 b self-hosted:977 (7fd5b48f01f0 @ 413)
Jan 22 16:23:24 zeus org.gnome.Shell.desktop[1892]: #7 7fffbfc5db30 b resource:///org/gnome/gjs/modules/signals.js:128 (7fd5b48c18b0 @ 386)
Jan 22 16:23:24 zeus org.gnome.Shell.desktop[1892]: #8 558fd94b19d0 i resource:///org/gnome/shell/ui/status/network.js:211 (7fd5b41e24c0 @ 37)
Jan 22 16:23:24 zeus org.gnome.Shell.desktop[1892]: #9 7fffbfc5eaa0 b resource:///org/gnome/gjs/modules/_legacy.js:82 (7fd5b48b0b80 @ 71)
Jan 22 16:23:24 zeus org.gnome.Shell.desktop[1892]: #10 558fd94b1958 i resource:///org/gnome/shell/ui/status/network.js:280 (7fd5b41e2a60 @ 12)
Jan 22 16:23:24 zeus org.gnome.Shell.desktop[1892]: #11 7fffbfc5fa40 b resource:///org/gnome/gjs/modules/signals.js:128 (7fd5b48c18b0 @ 386)
Jan 22 16:23:24 zeus org.gnome.Shell.desktop[1892]: #12 558fd94b18c0 i resource:///org/gnome/shell/ui/status/network.js:1398 (7fd5b41e7af0 @ 179)
Jan 22 16:23:24 zeus org.gnome.Shell.desktop[1892]: #13 7fffbfc609b0 b resource:///org/gnome/gjs/modules/_legacy.js:82 (7fd5b48b0b80 @ 71)
Jan 22 16:23:24 zeus org.gnome.Shell.desktop[1892]: #14 558fd94b1840 i resource:///org/gnome/shell/ui/status/network.js:160 (7fd5b41e2280 @ 17)
Jan 22 16:23:24 zeus org.gnome.Shell.desktop[1892]: #15 7fffbfc61960 b resource:///org/gnome/gjs/modules/_legacy.js:82 (7fd5b48b0b80 @ 71)
Jan 22 16:23:24 zeus org.gnome.Shell.desktop[1892]: #16 558fd94b1760 i resource:///org/gnome/gjs/modules/_legacy.js:39 (7fd5b48b08b0 @ 215)
Jan 22 16:23:24 zeus org.gnome.Shell.desktop[1892]: #17 558fd94b16d0 i resource:///org/gnome/shell/ui/status/network.js:1433 (7fd5b41e7c10 @ 113)
Jan 22 16:23:24 zeus org.gnome.Shell.desktop[1892]: #18 7fffbfc630b0 b resource:///org/gnome/gjs/modules/_legacy.js:82 (7fd5b48b0b80 @ 71)
Jan 22 16:23:24 zeus org.gnome.Shell.desktop[1892]: #19 558fd94b1610 i self-hosted:981 (7fd5b48f01f0 @ 474)
Jan 22 16:23:24 zeus gnome-shell[1892]: JS ERROR: Exception in callback for signal: icon-changed: TypeError: connection.get_setting_ip4_config is not a function#[email protected]:///org/gnome/shell/ui/status/network.js:1339:25#[email protected]:///org/gnome/gjs/modules/_legacy.js:82:22#[email protected]:///org/gnome/shell/ui/status/network.js:1352:13#[email protected]:///org/gnome/gjs/modules/_legacy.js:82:22#[email protected]:///org/gnome/shell/ui/status/network.js:2051:52#[email protected]:///org/gnome/gjs/modules/_legacy.js:82:22#[email protected]:///org/gnome/gjs/modules/signals.js:128:27#[email protected]:///org/gnome/shell/ui/status/network.js:211:9#[email protected]:///org/gnome/gjs/modules/_legacy.js:82:22#012_addConnection/<@resource:///org/gnome/shell/ui/status/network.js:280:46#[email protected]:///org/gnome/gjs/modules/signals.js:128:27#[email protected]:///org/gnome/shell/ui/status/network.js:1432:9#[email protected]:///org/gnome/gjs/modules/_legacy.js:82:22
Jan 22 16:23:24 zeus org.gnome.Shell.desktop[1892]: == Stack trace for context 0x558fd6f2a240 ==


Recebi IP, login e senha, gateway id e pre-shared-key tudo do cliente, já testamos num ubuntu e funcionou por lá.



  


2. Re: VPN L2TP

Cesar
pereiracesa1992

(usa Debian)

Enviado em 26/01/2021 - 16:05h

Meu amigo!
Também este problema quando vou usar L2TP e IpSec. Se eu tirar o IPSec funciona perfeitamente.
Li muitas coisas na internet e não achei nada .Então acabei deixando de lado pelo fato que precisa fechar esta VPN com um certa urgência.
Se alguém achar esta solução quero saber para deixar a minha VPN mais segura.


3. Re: VPN L2TP

Julian Soares
juliansoares

(usa Debian)

Enviado em 26/01/2021 - 16:09h


pereiracesa1992 escreveu:

Meu amigo!
Também este problema quando vou usar L2TP e IpSec. Se eu tirar o IPSec funciona perfeitamente.
Li muitas coisas na internet e não achei nada .Então acabei deixando de lado pelo fato que precisa fechar esta VPN com um certa urgência.
Se alguém achar esta solução quero saber para deixar a minha VPN mais segura.

Troquei o strongswan pelo libreswan, como faço pra tirar o ipsec e testar somente com L2TP?



4. Re: VPN L2TP

Cesar
pereiracesa1992

(usa Debian)

Enviado em 26/01/2021 - 16:33h

Como estou usando o Gnome só foi ir na Centro de controle GNOME e fazer a instalação do protocolo L2tp. Como já falei acima só colocar IPsec ele não fecha a VPN.







Patrocínio

Site hospedado pelo provedor RedeHost.
Linux banner
Linux banner
Linux banner

Destaques

Artigos

Dicas

Tópicos

Top 10 do mês

Scripts