Date: Fri, 26 Sep 2014 02:05:40 +0800 From: Zhi-Qiang Lei <zhiqiang.lei@gmail.com> To: "lokadamus@gmx.de" <lokadamus@gmx.de> Cc: freebsd-questions@freebsd.org Subject: Re: VPN client cannot receive packets Message-ID: <833C8AEE-E240-4729-B394-F311B7A6C52E@gmail.com> In-Reply-To: <5424444A.4020802@gmx.de> References: <6AF0AAAB-E7F2-4FA7-81E5-223DA924DDE1@gmail.com> <542424A2.6080408@gmx.de> <2330161C-FA96-4843-AEDA-376344483D61@gmail.com> <5424444A.4020802@gmx.de>
next in thread | previous in thread | raw e-mail | index | archive | help
On Sep 26, 2014, at 12:35 AM, lokadamus@gmx.de wrote: > On 25.09.2014 16:47, Zhi-Qiang Lei wrote: >=20 >> Hi, >>=20 >> It is my router/firewall with internet connection. >>=20 >> This time I try to list the packets from 8.8.8.8, but there are none. >>=20 >> root@freebsd-7638:~ # tcpdump src 8.8.8.8 >> tcpdump: verbose output suppressed, use -v or -vv for full protocol = decode >> listening on vtnet0, link-type EN10MB (Ethernet), capture size 65535 = bytes >>=20 >> Now the question URL is changed. >>=20 >> = http://serverfault.com/questions/631260/freebsd-l2tp-vpn-connection-error >>=20 >> Best regards, >> Zhi-Qiang Lei >> zhiqiang.lei@gmail.com >>=20 >> On Sep 25, 2014, at 10:20 PM, lokadamus@gmx.de wrote: >>=20 >>> On 25.09.2014 08:48, Zhi-Qiang Lei wrote: >>>=20 >>>> I setup a L2TP/IPsec VPN as this article: >>>>=20 >>>> http://wiki.stocksy.co.uk/wiki/L2TP_VPN_in_FreeBSD >>>>=20 >>>> My problem is that the connected clients cannot receive packets, = however, sending is okay. >>>>=20 >>>> Here are the tcpdump results if I tried to ping 8.8.8.8: >>>>=20 >>>> root@freebsd-7638:~ # tcpdump -i vtnet0 icmp >>>> tcpdump: verbose output suppressed, use -v or -vv for full protocol = decode >>>> listening on vtnet0, link-type EN10MB (Ethernet), capture size = 65535 bytes >>>> 05:55:17.630770 IP 192.168.99.150 > google-public-dns-a.google.com: = ICMP echo request, id 36697, seq 0, length 64 >>>> 05:55:18.627825 IP 192.168.99.150 > google-public-dns-a.google.com: = ICMP echo request, id 36697, seq 1, length 64 >>>> 05:55:19.624058 IP 192.168.99.150 > google-public-dns-a.google.com: = ICMP echo request, id 36697, seq 2, length 64 >>>> 05:55:20.618946 IP 192.168.99.150 > google-public-dns-a.google.com: = ICMP echo request, id 36697, seq 3, length 64 >>>> 05:55:21.622551 IP 192.168.99.150 > google-public-dns-a.google.com: = ICMP echo request, id 36697, seq 4, length 64 >>>>=20 >>>> What could be wrong? And how can I troubleshoot? You may reply on = SuperUser if you want, thanks in advance. >>>>=20 >>>> http://superuser.com/questions/816485/cannot-receive-packets >>>>=20 >>>> Best regards, >>>> Zhi-Qiang Lei >>>> zhiqiang.lei@gmail.com >>>>=20 >>>> _______________________________________________ >>>> freebsd-questions@freebsd.org mailing list >>>> http://lists.freebsd.org/mailman/listinfo/freebsd-questions >>>> To unsubscribe, send any mail to = "freebsd-questions-unsubscribe@freebsd.org" >>>>=20 >>> Hi, >>>=20 >>> Is this your router/ firewall with internet connection? >>> Look with tcpdump for traffic at 8.8.8.8. >>> So you can see, if traffic comes back or is missing before your vpn = system. >>>=20 >>>=20 >>> Best regards >>>=20 >> _______________________________________________ >> freebsd-questions@freebsd.org mailing list >> http://lists.freebsd.org/mailman/listinfo/freebsd-questions >> To unsubscribe, send any mail to = "freebsd-questions-unsubscribe@freebsd.org" >>=20 > Stupid mistake, have you made a vpn connection with google (8.8.8.8) = or with another subnet on the other side? > When you will test you vpn connection you should ping your other side = of your vpn connection. >=20 > Best regards, >=20 When I connect to VPN, I can ping the VPN (gateway) server with its IP = in VPN. (My IP in VPN is 192.168.99.150) $ ping 192.168.99.1 PING 192.168.99.1 (192.168.99.1): 56 data bytes 64 bytes from 192.168.99.1: icmp_seq=3D0 ttl=3D64 time=3D441.677 ms 64 bytes from 192.168.99.1: icmp_seq=3D1 ttl=3D64 time=3D361.192 ms 64 bytes from 192.168.99.1: icmp_seq=3D2 ttl=3D64 time=3D281.524 ms 64 bytes from 192.168.99.1: icmp_seq=3D3 ttl=3D64 time=3D300.120 ms 64 bytes from 192.168.99.1: icmp_seq=3D4 ttl=3D64 time=3D430.178 ms But I cannot ping 8.8.8.8. $ ping 8.8.8.8 PING 8.8.8.8 (8.8.8.8): 56 data bytes Request timeout for icmp_seq 0 Request timeout for icmp_seq 1 Request timeout for icmp_seq 2 Request timeout for icmp_seq 3 Request timeout for icmp_seq 4 Request timeout for icmp_seq 5 When I ping 8.8.8.8, tcpdump on VPN server shows that there is no = response from 8.8.8.8. Did I miss something? Thanks. Best regards, Zhi-Qiang Lei
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?833C8AEE-E240-4729-B394-F311B7A6C52E>