starred/docker-ipsec-vpn-server
1
0
Fork 0
mirror of https://github.com/hwdsl2/docker-ipsec-vpn-server.git synced 2026-04-26 01:55:53 +03:00
Code Issues Projects Releases Packages Wiki Activity

[GH-ISSUE #212] Can't connect using docker-ipsec-vpn-server:latest in windows 10 #197

New issue
Closed
opened 2026-03-02 07:44:41 +03:00 by kerem · 2 comments
kerem commented 2026-03-02 07:44:41 +03:00
Owner
Copy link

Originally created by @RayMMond on GitHub (Nov 10, 2020).
Original GitHub issue: https://github.com/hwdsl2/docker-ipsec-vpn-server/issues/212

Checklist

Describe the issue

To Reproduce
Steps to reproduce the behavior:

  1. pull docker-ipsec-vpn-server:latest
  2. docker run
    --name ipsec-vpn-server
    --restart=always
    -p 500:500/udp
    -p 4500:4500/udp
    -d --privileged
    hwdsl2/ipsec-vpn-server
  3. connect with win10

Logs

Redirecting to: /etc/init.d/ipsec start
Starting pluto IKE daemon for IPsec: Initializing NSS database
.
xl2tpd[1]: Not looking for kernel SAref support.
xl2tpd[1]: L2TP kernel support not detected (try modprobing l2tp_ppp and pppol2tp)
xl2tpd[1]: xl2tpd version xl2tpd-1.3.12 started on 7c3652193e69 PID:1
xl2tpd[1]: Written by Mark Spencer, Copyright (C) 1998, Adtran, Inc.
xl2tpd[1]: Forked by Scott Balmos and David Stipp, (C) 2001
xl2tpd[1]: Inherited by Jeff McAdams, (C) 2002
xl2tpd[1]: Forked again by Xelerance (www.xelerance.com) (C) 2006-2016
xl2tpd[1]: Listening on IP address 0.0.0.0, port 1701
xl2tpd[1]: Connection established to 110.185.174.70, 1701.  Local: 31022, Remote: 18 (ref=0/0).  LNS session is 'default'
xl2tpd[1]: check_control: Received out of order control packet on tunnel 18 (got 3, expected 2)
xl2tpd[1]: handle_packet: bad control packet!
xl2tpd[1]: start_pppd: I'm running:
xl2tpd[1]: "/usr/sbin/pppd"
xl2tpd[1]: "/dev/pts/0"
xl2tpd[1]: "passive"
xl2tpd[1]: "nodetach"
xl2tpd[1]: "192.168.42.1:192.168.42.10"
xl2tpd[1]: "refuse-pap"
xl2tpd[1]: "auth"
xl2tpd[1]: "require-chap"
xl2tpd[1]: "name"
xl2tpd[1]: "l2tpd"
xl2tpd[1]: "file"
xl2tpd[1]: "/etc/ppp/options.xl2tpd"
xl2tpd[1]: Call established with 110.185.174.70, PID: 305, Local: 10168, Remote: 1, Serial: 0
/usr/sbin/pppd: You need to create the /dev/ppp device node by
executing the following command as root:
        mknod /dev/ppp c 108 0
xl2tpd[1]: child_handler : pppd exited for call 1 with code 4
xl2tpd[1]: call_close: Call 10168 to 110.185.174.70 disconnected
xl2tpd[1]: write_packet: tty is not open yet.
xl2tpd[1]: control_finish: Connection closed to 110.185.174.70, port 1701 (), Local: 31022, Remote: 18
xl2tpd[1]: Terminating pppd: sending TERM signal to pid 305

Server (please complete the following information)
Docker info:

Containers: 8
 Running: 8
 Paused: 0
 Stopped: 0
Images: 60
Server Version: 1.13.1
Storage Driver: overlay2
 Backing Filesystem: extfs
 Supports d_type: true
 Native Overlay Diff: false
Logging Driver: journald
Cgroup Driver: systemd
Plugins:
 Volume: local
 Network: bridge host macvlan null overlay
Swarm: inactive
Runtimes: docker-runc runc
Default Runtime: docker-runc
Init Binary: /usr/libexec/docker/docker-init-current
containerd version:  (expected: aa8187dbd3b7ad67d8e5e3a15115d3eef43a7ed1)
runc version: e45dd70447fb72ee4e1f6989173aa6c5dd492d87 (expected: 9df8b306d01f59d3a8029be411de015b7304dd8f)
init version: fec3683b971d9c3ef73f284f176672c44b448662 (expected: 949e6facb77383876aeff8a6944dde66b3089574)
Security Options:
 seccomp
  WARNING: You're not using the default seccomp profile
  Profile: /etc/docker/seccomp.json
Kernel Version: 4.19.91-21.2.al7.x86_64
Operating System: Alibaba Cloud Linux (Aliyun Linux) 2.1903 LTS (Hunting Beagle)
OSType: linux
Architecture: x86_64
Number of Docker Hooks: 3
CPUs: 2
Total Memory: 7.461 GiB

Client (please complete the following information)

  • OS: win10 2004
  • VPN mode: IPsec/L2TP
Originally created by @RayMMond on GitHub (Nov 10, 2020). Original GitHub issue: https://github.com/hwdsl2/docker-ipsec-vpn-server/issues/212 **Checklist** - [x] I read the [README](https://github.com/hwdsl2/docker-ipsec-vpn-server/blob/master/README.md) - [x] I read the [Important notes](https://github.com/hwdsl2/docker-ipsec-vpn-server/blob/master/README.md#important-notes) - [x] I followed instructions to [configure VPN clients](https://github.com/hwdsl2/docker-ipsec-vpn-server/blob/master/README.md#next-steps) - [x] I checked [Troubleshooting](https://github.com/hwdsl2/setup-ipsec-vpn/blob/master/docs/clients.md#troubleshooting), [enabled logs](https://github.com/hwdsl2/docker-ipsec-vpn-server/blob/master/README.md#enable-libreswan-logs) and checked [VPN status](https://github.com/hwdsl2/setup-ipsec-vpn/blob/master/docs/clients.md#check-logs-and-vpn-status) - [x] I searched existing [Issues](https://github.com/hwdsl2/docker-ipsec-vpn-server/issues?q=is%3Aissue) - [x] This bug is about the IPsec VPN server Docker image, and not IPsec VPN itself **Describe the issue** **To Reproduce** Steps to reproduce the behavior: 1. pull docker-ipsec-vpn-server:latest 2. docker run \ --name ipsec-vpn-server \ --restart=always \ -p 500:500/udp \ -p 4500:4500/udp \ -d --privileged \ hwdsl2/ipsec-vpn-server 3. connect with win10 **Logs** ``` Redirecting to: /etc/init.d/ipsec start Starting pluto IKE daemon for IPsec: Initializing NSS database . xl2tpd[1]: Not looking for kernel SAref support. xl2tpd[1]: L2TP kernel support not detected (try modprobing l2tp_ppp and pppol2tp) xl2tpd[1]: xl2tpd version xl2tpd-1.3.12 started on 7c3652193e69 PID:1 xl2tpd[1]: Written by Mark Spencer, Copyright (C) 1998, Adtran, Inc. xl2tpd[1]: Forked by Scott Balmos and David Stipp, (C) 2001 xl2tpd[1]: Inherited by Jeff McAdams, (C) 2002 xl2tpd[1]: Forked again by Xelerance (www.xelerance.com) (C) 2006-2016 xl2tpd[1]: Listening on IP address 0.0.0.0, port 1701 xl2tpd[1]: Connection established to 110.185.174.70, 1701. Local: 31022, Remote: 18 (ref=0/0). LNS session is 'default' xl2tpd[1]: check_control: Received out of order control packet on tunnel 18 (got 3, expected 2) xl2tpd[1]: handle_packet: bad control packet! xl2tpd[1]: start_pppd: I'm running: xl2tpd[1]: "/usr/sbin/pppd" xl2tpd[1]: "/dev/pts/0" xl2tpd[1]: "passive" xl2tpd[1]: "nodetach" xl2tpd[1]: "192.168.42.1:192.168.42.10" xl2tpd[1]: "refuse-pap" xl2tpd[1]: "auth" xl2tpd[1]: "require-chap" xl2tpd[1]: "name" xl2tpd[1]: "l2tpd" xl2tpd[1]: "file" xl2tpd[1]: "/etc/ppp/options.xl2tpd" xl2tpd[1]: Call established with 110.185.174.70, PID: 305, Local: 10168, Remote: 1, Serial: 0 /usr/sbin/pppd: You need to create the /dev/ppp device node by executing the following command as root: mknod /dev/ppp c 108 0 xl2tpd[1]: child_handler : pppd exited for call 1 with code 4 xl2tpd[1]: call_close: Call 10168 to 110.185.174.70 disconnected xl2tpd[1]: write_packet: tty is not open yet. xl2tpd[1]: control_finish: Connection closed to 110.185.174.70, port 1701 (), Local: 31022, Remote: 18 xl2tpd[1]: Terminating pppd: sending TERM signal to pid 305 ``` **Server (please complete the following information)** Docker info: ``` Containers: 8 Running: 8 Paused: 0 Stopped: 0 Images: 60 Server Version: 1.13.1 Storage Driver: overlay2 Backing Filesystem: extfs Supports d_type: true Native Overlay Diff: false Logging Driver: journald Cgroup Driver: systemd Plugins: Volume: local Network: bridge host macvlan null overlay Swarm: inactive Runtimes: docker-runc runc Default Runtime: docker-runc Init Binary: /usr/libexec/docker/docker-init-current containerd version: (expected: aa8187dbd3b7ad67d8e5e3a15115d3eef43a7ed1) runc version: e45dd70447fb72ee4e1f6989173aa6c5dd492d87 (expected: 9df8b306d01f59d3a8029be411de015b7304dd8f) init version: fec3683b971d9c3ef73f284f176672c44b448662 (expected: 949e6facb77383876aeff8a6944dde66b3089574) Security Options: seccomp WARNING: You're not using the default seccomp profile Profile: /etc/docker/seccomp.json Kernel Version: 4.19.91-21.2.al7.x86_64 Operating System: Alibaba Cloud Linux (Aliyun Linux) 2.1903 LTS (Hunting Beagle) OSType: linux Architecture: x86_64 Number of Docker Hooks: 3 CPUs: 2 Total Memory: 7.461 GiB ``` **Client (please complete the following information)** - OS: win10 2004 - VPN mode: IPsec/L2TP
kerem closed this issue 2026-03-02 07:44:41 +03:00
kerem commented 2026-03-02 07:44:42 +03:00
Author
Owner
Copy link

@hwdsl2 commented on GitHub (Nov 10, 2020):

@RayMMond Hello! Does your Docker host run Debian 10 (Buster)? From the logs, it looks like your Docker host is missing /dev/ppp:

/usr/sbin/pppd: You need to create the /dev/ppp device node by
executing the following command as root:
        mknod /dev/ppp c 108 0

This is a problem with the cloud versions of Debian 10 kernels. See [1].

[1] https://github.com/hwdsl2/setup-ipsec-vpn/blob/master/docs/clients.md#debian-10-kernel

<!-- gh-comment-id:724797700 --> @hwdsl2 commented on GitHub (Nov 10, 2020): @RayMMond Hello! Does your Docker host run Debian 10 (Buster)? From the logs, it looks like your Docker host is missing `/dev/ppp`: ``` /usr/sbin/pppd: You need to create the /dev/ppp device node by executing the following command as root: mknod /dev/ppp c 108 0 ``` This is a problem with the cloud versions of Debian 10 kernels. See [1]. [1] https://github.com/hwdsl2/setup-ipsec-vpn/blob/master/docs/clients.md#debian-10-kernel
kerem commented 2026-03-02 07:44:42 +03:00
Author
Owner
Copy link

@RayMMond commented on GitHub (Nov 11, 2020):

@hwdsl2 Thanks! I got it!

<!-- gh-comment-id:725094127 --> @RayMMond commented on GitHub (Nov 11, 2020): @hwdsl2 Thanks! I got it!
Sign in to join this conversation.
No Branch/Tag specified
Branches Tags
master
No results found.
Labels
Clear labels   
bug

   
pull-request

Mirrored from GitHub Pull Request

  
question

   
question
No labels
bug
pull-request
question
question
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference
starred/docker-ipsec-vpn-server#197
No description provided.