Open dmp1ce opened 5 years ago
I see that same issue. Did you find a fix for this?
Sorry, I did not. I just stop the container, remove all volumes and restart.
I met the same issue, which timeout during connecting to server port 1701. My L2TP/IPSec VPN runs normaly for Windows and Mac clients, only UDP port 500 and 4500 are exported but without export port 1701. Why this l2tp-ipsec-vpn-client need port 1701? Is port 1701 necessary? Should I export UDP port 1701 on the server or client gateway?
Did anyone resolve this issue? It's currently just disconnecting after about 15 minutes, which is such a shame because other than that this connects seamlessly?
So I had to write a bash script to run to monitor the VPN connection presence and restart the container if it fails (just quick and dirty) and this morning I decided to get it to send me an email whenever it discovered it was down and had to kill and relaunch the container, and these are the times it did it:
It's actually doing it on the hour, every hour (the monitor script runs every minute). It's like as soon as the container hits 60 minute runtime, it then disconnects?
Mar 7 17:26:13: "L2TP-PSK" #1: ISAKMP SA expired (--dontrekey)
says that the ipsec connection is expired
Check the libreswan's doc about ipsec.conf
The parameter ikelifetime
is set to 1 hour by default, and rekey=no
was configured. Therefore, the client will not attempt to perform rekeying, and the IPsec connection will disconnect when the ikelifetime
is reached.
Just set rekey
to yes
After about 15 minutes or so after connecting to a Ubiquity gateway VPN I get the following message in the logs and then disconnected from VPN.
Is there a way for me to keep the connection alive?