全球主机交流论坛

标题: L2TP搭建 [打印本页]

作者: lopakaka 时间: 2012-2-5 21:10
标题: L2TP搭建
root@server:~# ipsec verify
Checking your system to see if IPsec got installed and started correctly:
Version check and ipsec on-path                               [OK]
Linux Openswan U2.6.24/K2.6.32-5-686-bigmem (netkey)
Checking for IPsec support in kernel                         [OK]
NETKEY detected, testing for disabled ICMP send_redirects    [OK]
NETKEY detected, testing for disabled ICMP accept_redirects    [OK]
Checking for RSA private key (/etc/ipsec.secrets)             [OK]
Checking that pluto is running                               [OK]
Pluto listening for IKE on udp 500                            [OK]
Pluto listening for NAT-T on udp 4500                         [FAILED]
Checking for 'ip' command                                     [OK]
Checking for 'iptables' command                               [OK]
Opportunistic Encryption Support                               [DISABLED]

卡好久了。。。求助

作者: 哈P哥 时间: 2012-2-5 21:21
本帖最后由哈P哥于 2012-2-5 21:27 编辑

yum install -y ppp gmp xl2tpd lsof 希望能帮到楼主

作者: lopakaka 时间: 2012-2-5 21:24

哈P哥发表于 2012-2-5 21:21
热心人遇到困难了？
yum install -y ppp gmp xl2tpd lsof 用这个试试，希望能帮到楼主，楼主好人 ...

debian6 我是

ppp 和xl2tpd lsof都有了

作者: 哈P哥 时间: 2012-2-5 21:26
http://suoluo.wordpress.com/2010/04/01/%E6%8A%98%E8%85%BEvps%E4%B8%8A%E7%9A%84l2tpipsec%E9%9A%8F%E5%B8%A6pptp/

#ipsec verify

Checking your system to see if IPsec got installed and started correctly:
Version check and ipsec on-path [OK]
Linux Openswan U2.6.24rc5/K2.6.18-164.11.1.el5xen (netkey)
Checking for IPsec support in kernel [OK]
Testing against enforced SElinux mode [OK]
NETKEY detected, testing for disabled ICMP send_redirects [OK] // 这里失败通过修改sysctl.conf解决
NETKEY detected, testing for disabled ICMP accept_redirects [OK]// 这里失败通过修改sysctl.conf解决
Checking for RSA private key (/etc/ipsec.secrets) [OK]
Checking that pluto is running [OK] // 这里失败，在提示目录下执行ipsec pluto
Pluto listening for IKE on udp 500 [OK] // 这里失败开提示，一般是没有安装lsof
Pluto listening for NAT-T on udp 4500 [OK] // 这里失败开提示，一般是没有安装lsof
Two or more interfaces found, checking IP forwarding [OK] //这里失败，是因为sysctl.conf下 net.ipv4.ip_forward = 0，要改成 1
Checking NAT and MASQUERADEing //这里失败，是因为iptables没有打开NAT
Checking for ‘ip’ command [OK]
Checking for ‘iptables’ command [OK]
Opportunistic Encryption Support [DISABLED] //这个之前可能会有一个DNS失败的提示，通过配置no_oe.conf解决

你可以看下，就知道怎么多了，楼下技术帝上

作者: gamecreating 时间: 2012-2-5 21:28
提示: 作者被禁止或删除内容自动屏蔽

作者: lopakaka 时间: 2012-2-5 21:55

gamecreating 发表于 2012-2-5 21:28
一键包路过!!!!!!!!

一键包安装成功。。。

作者: minkdog.com 时间: 2012-2-5 22:07
ssh 飘过

欢迎光临全球主机交流论坛 (https://hostloc.onozo.cc/)