Bug 1272767

Summary: NetworkManager L2TP with IPSec completely unusable!
Product: [Fedora] Fedora Reporter: Andrea Oliveri <oliveriandrea>
Component: NetworkManager-l2tpAssignee: Ivan Romanov <drizt72>
Status: CLOSED DUPLICATE QA Contact: Fedora Extras Quality Assurance <extras-qa>
Severity: urgent Docs Contact:
Priority: unspecified    
Version: 23CC: blueowl, custard.py, drizt72, psimerda
Target Milestone: ---   
Target Release: ---   
Hardware: x86_64   
OS: Unspecified   
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2016-01-25 13:55:17 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description Andrea Oliveri 2015-10-18 18:51:57 UTC 
L2TP plugin with IPSec PSK it is completely unusable because:
1) ipsec service doesn't start automatically, you have to enable it with systemctl
2) ipsec doesn't find *.secret files (the plugin doesn't generate it)
3) ipsec.conf generated by the plugins contains "VERSION 2" line incompatible with libreswan
4) if you insert manually a proper *.secret file in /etc/ipsec.d (enables it in /etc/ipsec.conf and removing "VERSION 2") the plugins fails with
<warn> VPN connection 'VPN' failed to connect: 'Possible error in IPSec setup.'.
<warn> error disconnecting VPN: Could not process the request because no VPN connection was active.
and ipsec log doesn't show any error or warn message.
Selinux: disabled.
Please fix it..
Comment 1 Ivan Romanov 2015-10-20 04:29:21 UTC 
Sorry I can't help here.

https://bugzilla.redhat.com/show_bug.cgi?id=887674#c105
Comment 2 Andrea Oliveri 2015-11-09 14:21:22 UTC 
please, someone can fix it?
Comment 3 Blueowl 2016-01-25 13:55:17 UTC 

*** This bug has been marked as a duplicate of bug 887674 ***