1299119 – Don't establish a l2tp vpn connect used NetworkManager-l2tp component

Bug 1299119 - Don't establish a l2tp vpn connect used NetworkManager-l2tp component

Summary: Don't establish a l2tp vpn connect used NetworkManager-l2tp component

Keywords:
Status:	CLOSED ERRATA
Alias:	None
Product:	Fedora
Classification:	Fedora
Component:	NetworkManager-l2tp
Sub Component:
Version:	23
Hardware:	x86_64
OS:	Linux
Priority:	unspecified
Severity:	high
Target Milestone:	---
Assignee:	Ivan Romanov
QA Contact:	Fedora Extras Quality Assurance
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2016-01-16 03:11 UTC by cathywife
Modified:	2016-06-02 14:56 UTC (History)
CC List:	2 users (show)
Fixed In Version:	NetworkManager-l2tp-1.0.2-1.fc23
Doc Type:	Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed:	2016-06-02 14:56:09 UTC
Type:	Bug
Dependent Products:

Attachments	(Terms of Use)
Add an attachment (proposed patch, testcase, etc.)

Description cathywife 2016-01-16 03:11:57 UTC

I don't establish a l2tp vpn connect to my vpn server used NetworkManager-l2tp component.In the windows work  is fine.

The result:
control_finish: No secret for authenticating to 'LNS'

The log output:
1月 16 10:49:53 ns.mqcache.net NetworkManager[747]: xl2tpd[3113]: Not looking for kernel SAref support.
1月 16 10:49:53 ns.mqcache.net NetworkManager[747]: xl2tpd[3113]: Using l2tp kernel support.
1月 16 10:49:53 ns.mqcache.net NetworkManager[747]: xl2tpd[3113]: xl2tpd version xl2tpd-1.3.6 started on ns.mqcache.net PID:3113
1月 16 10:49:53 ns.mqcache.net NetworkManager[747]: xl2tpd[3113]: Written by Mark Spencer, Copyright (C) 1998, Adtran, Inc.
1月 16 10:49:53 ns.mqcache.net NetworkManager[747]: xl2tpd[3113]: Forked by Scott Balmos and David Stipp, (C) 2001
1月 16 10:49:53 ns.mqcache.net NetworkManager[747]: xl2tpd[3113]: Inherited by Jeff McAdams, (C) 2002
1月 16 10:49:53 ns.mqcache.net NetworkManager[747]: xl2tpd[3113]: Forked again by Xelerance (www.xelerance.com) (C) 2006
1月 16 10:49:53 ns.mqcache.net NetworkManager[747]: xl2tpd[3113]: Listening on IP address 0.0.0.0, port 1701
1月 16 10:49:53 ns.mqcache.net NetworkManager[747]: xl2tpd[3113]: Connecting to host 113.105.131.130, port 1701
1月 16 10:49:53 ns.mqcache.net NetworkManager[747]: xl2tpd[3113]: handle_challenge: no secret found for us='ns.mqcache.net' and them='LNS'
1月 16 10:49:53 ns.mqcache.net NetworkManager[747]: xl2tpd[3113]: control_finish: No secret for authenticating to 'LNS'
1月 16 10:49:53 ns.mqcache.net NetworkManager[747]: xl2tpd[3113]: Connection 1 closed to 113.105.131.130, port 1701 (No secret key on our end)
1月 16 10:50:03 ns.mqcache.net NetworkManager[747]: ** (nm-l2tp-service:3111): WARNING **: pppd timeout. Looks like pppd didn't initialize our dbus mod
1月 16 10:50:03 ns.mqcache.net NetworkManager[747]: <warn>  VPN plugin failed: unknown (7)
1月 16 10:50:33 ns.mqcache.net NetworkManager[747]: <warn>  VPN connection 'casc_vpn' connect timeout exceeded.
1月 16 10:50:33 ns.mqcache.net NetworkManager[747]: (nm-l2tp-service:3111): GLib-CRITICAL **: Source ID 8 was not found when attempting to remove it
1月 16 10:50:33 ns.mqcache.net NetworkManager[747]: ** Message: Terminated l2tp daemon with PID 3113.
1月 16 10:50:33 ns.mqcache.net NetworkManager[747]: xl2tpd[3113]: death_handler: Fatal signal 15 received
1月 16 10:50:33 ns.mqcache.net NetworkManager[747]: ** (nm-l2tp-service:3111): WARNING **: xl2tpd exited with error code 1

--------
/usr/libexec/nm-l2tp-service --debug
** Message: nm-l2tp-service (version 0.9.8.5) starting...
connection
	id : "casc_vpn" (s)
	uuid : "bd2646bf-9bae-42d6-a371-222c8f49ca3d" (s)
	interface-name : NULL (sd)
	type : "vpn" (s)
	permissions : user:jun: (s)
	autoconnect : FALSE (s)
	timestamp : 0 (sd)
	read-only : FALSE (sd)
	zone : NULL (sd)
	master : NULL (sd)
	slave-type : NULL (sd)
	secondaries :  (sd)
	gateway-ping-timeout : 0 (sd)


vpn
	service-type : "org.freedesktop.NetworkManager.l2tp" (s)
	user-name : NULL (sd)
	persistent : FALSE (sd)
	data : password-flags=0,noaccomp=yes,nopcomp=yes,user=aaaaaaaaaa,refuse-eap=yes,refuse-chap=yes,gateway=113.105.131.130,refuse-mschap=yes,refuse-pap=yes (s)
	secrets : password=1111111111 (s)


ipv6
	method : "auto" (s)
	dhcp-hostname : NULL (sd)
	dns :  (s)
	dns-search :  (sd)
	addresses :  (s)
	routes :  (s)
	route-metric : -1 (sd)
	ignore-auto-routes : FALSE (sd)
	ignore-auto-dns : FALSE (sd)
	never-default : FALSE (sd)
	may-fail : TRUE (sd)
	ip6-privacy : -1 (sd)


ipv4
	method : "auto" (s)
	dns :  (s)
	dns-search :  (sd)
	addresses :  (s)
	routes :  (s)
	route-metric : -1 (sd)
	ignore-auto-routes : FALSE (sd)
	ignore-auto-dns : FALSE (sd)
	dhcp-client-id : NULL (sd)
	dhcp-send-hostname : TRUE (sd)
	dhcp-hostname : NULL (sd)
	never-default : FALSE (sd)
	may-fail : TRUE (sd)


** Message: Check port 1701
** Message: ipsec enable flag: (null)
** Message: xl2tpd started with pid 5496
xl2tpd[5496]: Not looking for kernel SAref support.
xl2tpd[5496]: Using l2tp kernel support.
xl2tpd[5496]: xl2tpd version xl2tpd-1.3.6 started on ns.mqcache.net PID:5496
xl2tpd[5496]: Written by Mark Spencer, Copyright (C) 1998, Adtran, Inc.
xl2tpd[5496]: Forked by Scott Balmos and David Stipp, (C) 2001
xl2tpd[5496]: Inherited by Jeff McAdams, (C) 2002
xl2tpd[5496]: Forked again by Xelerance (www.xelerance.com) (C) 2006
xl2tpd[5496]: Listening on IP address 0.0.0.0, port 1701
xl2tpd[5496]: get_call: allocating new tunnel for host 113.105.131.130, port 1701.
xl2tpd[5496]: Connecting to host 113.105.131.130, port 1701
xl2tpd[5496]: control_finish: message type is (null)(0).  Tunnel is 0, call is 0.
xl2tpd[5496]: control_finish: sending SCCRQ
xl2tpd[5496]: handle_avps: handling avp's for tunnel 15962, call 0
xl2tpd[5496]: message_type_avp: message type 2 (Start-Control-Connection-Reply)
xl2tpd[5496]: protocol_version_avp: peer is using version 1, revision 0.
xl2tpd[5496]: framing_caps_avp: supported peer frames: async sync
xl2tpd[5496]: hostname_avp: peer reports hostname 'LNS'
xl2tpd[5496]: assigned_tunnel_avp: using peer's tunnel 1
xl2tpd[5496]: bearer_caps_avp: supported peer bearers: analog digital
xl2tpd[5496]: receive_window_size_avp: peer wants RWS of 8.  Will use flow control.
xl2tpd[5496]: challenge_avp: challenge avp found
xl2tpd[5496]: control_finish: message type is Start-Control-Connection-Reply(2).  Tunnel is 1, call is 0.
xl2tpd[5496]: handle_challenge: no secret found for us='ns.mqcache.net' and them='LNS'
xl2tpd[5496]: control_finish: No secret for authenticating to 'LNS'
xl2tpd[5496]: network_thread: bad packet
xl2tpd[5496]: build_fdset: closing down tunnel 15962
xl2tpd[5496]: Connection 1 closed to 113.105.131.130, port 1701 (No secret key on our end)
xl2tpd[5496]: build_fdset: closing down tunnel 15962

** (nm-l2tp-service:5447): WARNING **: pppd timeout. Looks like pppd didn't initialize our dbus module

(nm-l2tp-service:5447): GLib-CRITICAL **: Source ID 8 was not found when attempting to remove it
** Message: Terminated l2tp daemon with PID 5496.
xl2tpd[5496]: death_handler: Fatal signal 15 received

** (nm-l2tp-service:5447): WARNING **: xl2tpd exited with error code 1

Comment 1 Fedora Update System 2016-05-30 16:50:50 UTC

NetworkManager-l2tp-1.0.2-1.fc23 has been submitted as an update to Fedora 23. https://bodhi.fedoraproject.org/updates/FEDORA-2016-54c8a74b61

Comment 2 Fedora Update System 2016-05-31 09:53:16 UTC

NetworkManager-l2tp-1.0.2-1.fc23 has been pushed to the Fedora 23 testing repository. If problems still persist, please make note of it in this bug report.
See https://fedoraproject.org/wiki/QA:Updates_Testing for
instructions on how to install test updates.
You can provide feedback for this update here: https://bodhi.fedoraproject.org/updates/FEDORA-2016-54c8a74b61

Comment 3 Fedora Update System 2016-06-02 14:55:54 UTC

NetworkManager-l2tp-1.0.2-1.fc23 has been pushed to the Fedora 23 stable repository. If problems still persist, please make note of it in this bug report.

Note You need to log in before you can comment on or make changes to this bug.