From owner-freebsd-questions@FreeBSD.ORG Thu Sep 25 16:35:26 2014 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id B03C0EC4 for ; Thu, 25 Sep 2014 16:35:26 +0000 (UTC) Received: from mout.gmx.net (mout.gmx.net [212.227.17.21]) (using TLSv1.2 with cipher DHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client CN "mout.gmx.net", Issuer "TeleSec ServerPass DE-1" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 3EE0EBE1 for ; Thu, 25 Sep 2014 16:35:25 +0000 (UTC) Received: from [192.168.0.197] ([95.91.231.152]) by mail.gmx.com (mrgmx101) with ESMTPSA (Nemesis) id 0MSIf1-1Xizho1tRD-00TRfs; Thu, 25 Sep 2014 18:35:23 +0200 Message-ID: <5424444A.4020802@gmx.de> Date: Thu, 25 Sep 2014 18:35:22 +0200 From: "lokadamus@gmx.de" User-Agent: Mozilla/5.0 (X11; FreeBSD i386; rv:31.0) Gecko/20100101 Thunderbird/31.1.0 MIME-Version: 1.0 To: Zhi-Qiang Lei Subject: Re: VPN client cannot receive packets References: <6AF0AAAB-E7F2-4FA7-81E5-223DA924DDE1@gmail.com> <542424A2.6080408@gmx.de> <2330161C-FA96-4843-AEDA-376344483D61@gmail.com> In-Reply-To: <2330161C-FA96-4843-AEDA-376344483D61@gmail.com> Content-Type: text/plain; charset=windows-1252; format=flowed Content-Transfer-Encoding: 7bit X-Provags-ID: V03:K0:LCmNZw1DhdDlD7Ri57YopNySndzsfLBEieGutS9NMh68Ha3oNOT KPvd9K22ApQOgT5aSX7ak7YElmvKR7CpL7GNn/dRXK5GRrbiKZeYCjmYebifvuj4yed+wQU 1WVFl3NH4XpFhFKoK/wIdpKJoGJlDQOFv3CrA4k569jp96LCPDeirddC3i9CsOn78YHKxb3 ckzLutrLd+s8tcxo9cWlw== X-UI-Out-Filterresults: notjunk:1; Cc: freebsd-questions@freebsd.org X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.18-1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 25 Sep 2014 16:35:26 -0000 On 25.09.2014 16:47, Zhi-Qiang Lei wrote: > Hi, > > It is my router/firewall with internet connection. > > This time I try to list the packets from 8.8.8.8, but there are none. > > root@freebsd-7638:~ # tcpdump src 8.8.8.8 > tcpdump: verbose output suppressed, use -v or -vv for full protocol decode > listening on vtnet0, link-type EN10MB (Ethernet), capture size 65535 bytes > > Now the question URL is changed. > > http://serverfault.com/questions/631260/freebsd-l2tp-vpn-connection-error > > Best regards, > Zhi-Qiang Lei > zhiqiang.lei@gmail.com > > On Sep 25, 2014, at 10:20 PM, lokadamus@gmx.de wrote: > >> On 25.09.2014 08:48, Zhi-Qiang Lei wrote: >> >>> I setup a L2TP/IPsec VPN as this article: >>> >>> http://wiki.stocksy.co.uk/wiki/L2TP_VPN_in_FreeBSD >>> >>> My problem is that the connected clients cannot receive packets, however, sending is okay. >>> >>> Here are the tcpdump results if I tried to ping 8.8.8.8: >>> >>> root@freebsd-7638:~ # tcpdump -i vtnet0 icmp >>> tcpdump: verbose output suppressed, use -v or -vv for full protocol decode >>> listening on vtnet0, link-type EN10MB (Ethernet), capture size 65535 bytes >>> 05:55:17.630770 IP 192.168.99.150 > google-public-dns-a.google.com: ICMP echo request, id 36697, seq 0, length 64 >>> 05:55:18.627825 IP 192.168.99.150 > google-public-dns-a.google.com: ICMP echo request, id 36697, seq 1, length 64 >>> 05:55:19.624058 IP 192.168.99.150 > google-public-dns-a.google.com: ICMP echo request, id 36697, seq 2, length 64 >>> 05:55:20.618946 IP 192.168.99.150 > google-public-dns-a.google.com: ICMP echo request, id 36697, seq 3, length 64 >>> 05:55:21.622551 IP 192.168.99.150 > google-public-dns-a.google.com: ICMP echo request, id 36697, seq 4, length 64 >>> >>> What could be wrong? And how can I troubleshoot? You may reply on SuperUser if you want, thanks in advance. >>> >>> http://superuser.com/questions/816485/cannot-receive-packets >>> >>> Best regards, >>> Zhi-Qiang Lei >>> zhiqiang.lei@gmail.com >>> >>> _______________________________________________ >>> freebsd-questions@freebsd.org mailing list >>> http://lists.freebsd.org/mailman/listinfo/freebsd-questions >>> To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org" >>> >> Hi, >> >> Is this your router/ firewall with internet connection? >> Look with tcpdump for traffic at 8.8.8.8. >> So you can see, if traffic comes back or is missing before your vpn system. >> >> >> Best regards >> > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org" > Stupid mistake, have you made a vpn connection with google (8.8.8.8) or with another subnet on the other side? When you will test you vpn connection you should ping your other side of your vpn connection. Best regards,