Bug 1299119

Summary: Don't establish a l2tp vpn connect used NetworkManager-l2tp component
Product: [Fedora] Fedora Reporter: cathywife <shuiche80>
Component: NetworkManager-l2tpAssignee: Ivan Romanov <drizt72>
Status: CLOSED ERRATA QA Contact: Fedora Extras Quality Assurance <extras-qa>
Severity: high Docs Contact:
Priority: unspecified    
Version: 23CC: drizt72, psimerda
Target Milestone: ---   
Target Release: ---   
Hardware: x86_64   
OS: Linux   
Whiteboard:
Fixed In Version: NetworkManager-l2tp-1.0.2-1.fc23 Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2016-06-02 14:56:09 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:

Description cathywife 2016-01-16 03:11:57 UTC 
I don't establish a l2tp vpn connect to my vpn server used NetworkManager-l2tp component.In the windows work  is fine.

The result:
control_finish: No secret for authenticating to 'LNS'

The log output:
1月 16 10:49:53 ns.mqcache.net NetworkManager[747]: xl2tpd[3113]: Not looking for kernel SAref support.
1月 16 10:49:53 ns.mqcache.net NetworkManager[747]: xl2tpd[3113]: Using l2tp kernel support.
1月 16 10:49:53 ns.mqcache.net NetworkManager[747]: xl2tpd[3113]: xl2tpd version xl2tpd-1.3.6 started on ns.mqcache.net PID:3113
1月 16 10:49:53 ns.mqcache.net NetworkManager[747]: xl2tpd[3113]: Written by Mark Spencer, Copyright (C) 1998, Adtran, Inc.
1月 16 10:49:53 ns.mqcache.net NetworkManager[747]: xl2tpd[3113]: Forked by Scott Balmos and David Stipp, (C) 2001
1月 16 10:49:53 ns.mqcache.net NetworkManager[747]: xl2tpd[3113]: Inherited by Jeff McAdams, (C) 2002
1月 16 10:49:53 ns.mqcache.net NetworkManager[747]: xl2tpd[3113]: Forked again by Xelerance (www.xelerance.com) (C) 2006
1月 16 10:49:53 ns.mqcache.net NetworkManager[747]: xl2tpd[3113]: Listening on IP address 0.0.0.0, port 1701
1月 16 10:49:53 ns.mqcache.net NetworkManager[747]: xl2tpd[3113]: Connecting to host 113.105.131.130, port 1701
1月 16 10:49:53 ns.mqcache.net NetworkManager[747]: xl2tpd[3113]: handle_challenge: no secret found for us='ns.mqcache.net' and them='LNS'
1月 16 10:49:53 ns.mqcache.net NetworkManager[747]: xl2tpd[3113]: control_finish: No secret for authenticating to 'LNS'
1月 16 10:49:53 ns.mqcache.net NetworkManager[747]: xl2tpd[3113]: Connection 1 closed to 113.105.131.130, port 1701 (No secret key on our end)
1月 16 10:50:03 ns.mqcache.net NetworkManager[747]: ** (nm-l2tp-service:3111): WARNING **: pppd timeout. Looks like pppd didn't initialize our dbus mod
1月 16 10:50:03 ns.mqcache.net NetworkManager[747]: <warn>  VPN plugin failed: unknown (7)
1月 16 10:50:33 ns.mqcache.net NetworkManager[747]: <warn>  VPN connection 'casc_vpn' connect timeout exceeded.
1月 16 10:50:33 ns.mqcache.net NetworkManager[747]: (nm-l2tp-service:3111): GLib-CRITICAL **: Source ID 8 was not found when attempting to remove it
1月 16 10:50:33 ns.mqcache.net NetworkManager[747]: ** Message: Terminated l2tp daemon with PID 3113.
1月 16 10:50:33 ns.mqcache.net NetworkManager[747]: xl2tpd[3113]: death_handler: Fatal signal 15 received
1月 16 10:50:33 ns.mqcache.net NetworkManager[747]: ** (nm-l2tp-service:3111): WARNING **: xl2tpd exited with error code 1

--------
/usr/libexec/nm-l2tp-service --debug
** Message: nm-l2tp-service (version 0.9.8.5) starting...
connection
	id : "casc_vpn" (s)
	uuid : "bd2646bf-9bae-42d6-a371-222c8f49ca3d" (s)
	interface-name : NULL (sd)
	type : "vpn" (s)
	permissions : user:jun: (s)
	autoconnect : FALSE (s)
	timestamp : 0 (sd)
	read-only : FALSE (sd)
	zone : NULL (sd)
	master : NULL (sd)
	slave-type : NULL (sd)
	secondaries :  (sd)
	gateway-ping-timeout : 0 (sd)


vpn
	service-type : "org.freedesktop.NetworkManager.l2tp" (s)
	user-name : NULL (sd)
	persistent : FALSE (sd)
	data : password-flags=0,noaccomp=yes,nopcomp=yes,user=aaaaaaaaaa,refuse-eap=yes,refuse-chap=yes,gateway=113.105.131.130,refuse-mschap=yes,refuse-pap=yes (s)
	secrets : password=1111111111 (s)


ipv6
	method : "auto" (s)
	dhcp-hostname : NULL (sd)
	dns :  (s)
	dns-search :  (sd)
	addresses :  (s)
	routes :  (s)
	route-metric : -1 (sd)
	ignore-auto-routes : FALSE (sd)
	ignore-auto-dns : FALSE (sd)
	never-default : FALSE (sd)
	may-fail : TRUE (sd)
	ip6-privacy : -1 (sd)


ipv4
	method : "auto" (s)
	dns :  (s)
	dns-search :  (sd)
	addresses :  (s)
	routes :  (s)
	route-metric : -1 (sd)
	ignore-auto-routes : FALSE (sd)
	ignore-auto-dns : FALSE (sd)
	dhcp-client-id : NULL (sd)
	dhcp-send-hostname : TRUE (sd)
	dhcp-hostname : NULL (sd)
	never-default : FALSE (sd)
	may-fail : TRUE (sd)


** Message: Check port 1701
** Message: ipsec enable flag: (null)
** Message: xl2tpd started with pid 5496
xl2tpd[5496]: Not looking for kernel SAref support.
xl2tpd[5496]: Using l2tp kernel support.
xl2tpd[5496]: xl2tpd version xl2tpd-1.3.6 started on ns.mqcache.net PID:5496
xl2tpd[5496]: Written by Mark Spencer, Copyright (C) 1998, Adtran, Inc.
xl2tpd[5496]: Forked by Scott Balmos and David Stipp, (C) 2001
xl2tpd[5496]: Inherited by Jeff McAdams, (C) 2002
xl2tpd[5496]: Forked again by Xelerance (www.xelerance.com) (C) 2006
xl2tpd[5496]: Listening on IP address 0.0.0.0, port 1701
xl2tpd[5496]: get_call: allocating new tunnel for host 113.105.131.130, port 1701.
xl2tpd[5496]: Connecting to host 113.105.131.130, port 1701
xl2tpd[5496]: control_finish: message type is (null)(0).  Tunnel is 0, call is 0.
xl2tpd[5496]: control_finish: sending SCCRQ
xl2tpd[5496]: handle_avps: handling avp's for tunnel 15962, call 0
xl2tpd[5496]: message_type_avp: message type 2 (Start-Control-Connection-Reply)
xl2tpd[5496]: protocol_version_avp: peer is using version 1, revision 0.
xl2tpd[5496]: framing_caps_avp: supported peer frames: async sync
xl2tpd[5496]: hostname_avp: peer reports hostname 'LNS'
xl2tpd[5496]: assigned_tunnel_avp: using peer's tunnel 1
xl2tpd[5496]: bearer_caps_avp: supported peer bearers: analog digital
xl2tpd[5496]: receive_window_size_avp: peer wants RWS of 8.  Will use flow control.
xl2tpd[5496]: challenge_avp: challenge avp found
xl2tpd[5496]: control_finish: message type is Start-Control-Connection-Reply(2).  Tunnel is 1, call is 0.
xl2tpd[5496]: handle_challenge: no secret found for us='ns.mqcache.net' and them='LNS'
xl2tpd[5496]: control_finish: No secret for authenticating to 'LNS'
xl2tpd[5496]: network_thread: bad packet
xl2tpd[5496]: build_fdset: closing down tunnel 15962
xl2tpd[5496]: Connection 1 closed to 113.105.131.130, port 1701 (No secret key on our end)
xl2tpd[5496]: build_fdset: closing down tunnel 15962

** (nm-l2tp-service:5447): WARNING **: pppd timeout. Looks like pppd didn't initialize our dbus module

(nm-l2tp-service:5447): GLib-CRITICAL **: Source ID 8 was not found when attempting to remove it
** Message: Terminated l2tp daemon with PID 5496.
xl2tpd[5496]: death_handler: Fatal signal 15 received

** (nm-l2tp-service:5447): WARNING **: xl2tpd exited with error code 1
Comment 1 Fedora Update System 2016-05-30 16:50:50 UTC 
NetworkManager-l2tp-1.0.2-1.fc23 has been submitted as an update to Fedora 23. https://bodhi.fedoraproject.org/updates/FEDORA-2016-54c8a74b61
Comment 2 Fedora Update System 2016-05-31 09:53:16 UTC 
NetworkManager-l2tp-1.0.2-1.fc23 has been pushed to the Fedora 23 testing repository. If problems still persist, please make note of it in this bug report.
See https://fedoraproject.org/wiki/QA:Updates_Testing for
instructions on how to install test updates.
You can provide feedback for this update here: https://bodhi.fedoraproject.org/updates/FEDORA-2016-54c8a74b61
Comment 3 Fedora Update System 2016-06-02 14:55:54 UTC 
NetworkManager-l2tp-1.0.2-1.fc23 has been pushed to the Fedora 23 stable repository. If problems still persist, please make note of it in this bug report.