starred/docker-ipsec-vpn-server
1
0
Fork 0
mirror of https://github.com/hwdsl2/docker-ipsec-vpn-server.git synced 2026-04-26 01:55:53 +03:00
Code Issues Projects Releases Packages Wiki Activity

[GH-ISSUE #446] failed to start vpn #419

New issue
Closed
opened 2026-03-02 08:18:48 +03:00 by kerem · 2 comments
kerem commented 2026-03-02 08:18:48 +03:00
Owner
Copy link

Originally created by @elf-313 on GitHub (Aug 24, 2024).
Original GitHub issue: https://github.com/hwdsl2/docker-ipsec-vpn-server/issues/446

任务列表

问题描述

I am new to docker, first of all I repeated everything that is said in the quick start

docker pull hwdsl2/ipsec-vpn-server

Then

docker run \
--name ipsec-vpn-server \
--restart=always \
-v ikev2-vpn-data:/etc/ipsec.d \
-v /lib/modules:/lib/modules:ro \
-p 500:500/udp \
-p 4500:4500/udp \
-d --privileged \
hwdsl2/ipsec-vpn-server

But unfortunately nothing worked for me, I asked the VDS operator about the ports, he answered - There are no restrictions.

logs -

`root@vpn:~# docker logs ipsec-vpn-server

Retrieving previously generated VPN credentials...

Trying to auto discover IP of this server...

Starting IPsec service...

================================================

IPsec VPN server is now ready for use!

Connect to your new VPN with these details:

Server IP: 45.xxx.xxx.xxx
IPsec PSK: axxxxxxxxxxxxxxxxH
Username: vpnuser
Password: axxxxxxxxxxxxA

Write these down. You'll need them to connect!

VPN client setup: https://vpnsetup.net/clients2

================================================

================================================

IKEv2 is already set up. Details for IKEv2 mode:

VPN server address: 45.xxx.xxx.xxx
VPN client name: vpnclient

Client configuration is available inside the
Docker container at:
/etc/ipsec.d/vpnclient.p12 (for Windows & Linux)
/etc/ipsec.d/vpnclient.sswan (for Android)
/etc/ipsec.d/vpnclient.mobileconfig (for iOS & macOS)

Next steps: Configure IKEv2 clients. See:
https://vpnsetup.net/clients2

================================================

xl2tpd[1]: Not looking for kernel SAref support.
xl2tpd[1]: Using l2tp kernel support.
xl2tpd[1]: xl2tpd version xl2tpd-1.3.18 started on ecb52605dfe5 PID:1
xl2tpd[1]: Written by Mark Spencer, Copyright (C) 1998, Adtran, Inc.
xl2tpd[1]: Forked by Scott Balmos and David Stipp, (C) 2001
xl2tpd[1]: Inherited by Jeff McAdams, (C) 2002
xl2tpd[1]: Forked again by Xelerance (www.xelerance.com) (C) 2006-2016
xl2tpd[1]: Listening on IP address 0.0.0.0, port 1701
xl2tpd[1]: death_handler: Fatal signal 15 received

Retrieving previously generated VPN credentials...

Trying to auto discover IP of this server...

Starting IPsec service...

================================================

IPsec VPN server is now ready for use!

Connect to your new VPN with these details:

Server IP: 45.xxx.xxx.xxx
IPsec PSK: axxxxxxxxxxxxxxxxH
Username: vpnuser
Password: axxxxxxxxxxxxA

Write these down. You'll need them to connect!

VPN client setup: https://vpnsetup.net/clients2

================================================

================================================

IKEv2 is already set up. Details for IKEv2 mode:

VPN server address: 45.xxx.xxx.xxx
VPN client name: vpnclient

Client configuration is available inside the
Docker container at:
/etc/ipsec.d/vpnclient.p12 (for Windows & Linux)
/etc/ipsec.d/vpnclient.sswan (for Android)
/etc/ipsec.d/vpnclient.mobileconfig (for iOS & macOS)

Next steps: Configure IKEv2 clients. See:
https://vpnsetup.net/clients2

================================================

xl2tpd[1]: Not looking for kernel SAref support.
xl2tpd[1]: Using l2tp kernel support.
xl2tpd[1]: xl2tpd version xl2tpd-1.3.18 started on ecb52605dfe5 PID:1
xl2tpd[1]: Written by Mark Spencer, Copyright (C) 1998, Adtran, Inc.
xl2tpd[1]: Forked by Scott Balmos and David Stipp, (C) 2001
xl2tpd[1]: Inherited by Jeff McAdams, (C) 2002
xl2tpd[1]: Forked again by Xelerance (www.xelerance.com) (C) 2006-2016
xl2tpd[1]: Listening on IP address 0.0.0.0, port 1701
xl2tpd[1]: death_handler: Fatal signal 15 received`
Originally created by @elf-313 on GitHub (Aug 24, 2024). Original GitHub issue: https://github.com/hwdsl2/docker-ipsec-vpn-server/issues/446 **任务列表** - [x] 我已阅读 [自述文件](https://github.com/hwdsl2/docker-ipsec-vpn-server/blob/master/README-zh.md) - [x] 我已阅读 [重要提示](https://github.com/hwdsl2/docker-ipsec-vpn-server/blob/master/README-zh.md#重要提示) - [x] 我已按照说明 [配置 VPN 客户端](https://github.com/hwdsl2/docker-ipsec-vpn-server/blob/master/README-zh.md#下一步) - [x] 我搜索了已有的 [Issues](https://github.com/hwdsl2/docker-ipsec-vpn-server/issues?q=is%3Aissue) - [x] 这个 bug 是关于 IPsec VPN 服务器 Docker 镜像,而不是 IPsec VPN 本身 **问题描述** I am new to docker, first of all I repeated everything that is said in the quick start `docker pull hwdsl2/ipsec-vpn-server` Then ``` docker run \ --name ipsec-vpn-server \ --restart=always \ -v ikev2-vpn-data:/etc/ipsec.d \ -v /lib/modules:/lib/modules:ro \ -p 500:500/udp \ -p 4500:4500/udp \ -d --privileged \ hwdsl2/ipsec-vpn-server ``` But unfortunately nothing worked for me, I asked the VDS operator about the ports, he answered - There are no restrictions. logs - ``` `root@vpn:~# docker logs ipsec-vpn-server Retrieving previously generated VPN credentials... Trying to auto discover IP of this server... Starting IPsec service... ================================================ IPsec VPN server is now ready for use! Connect to your new VPN with these details: Server IP: 45.xxx.xxx.xxx IPsec PSK: axxxxxxxxxxxxxxxxH Username: vpnuser Password: axxxxxxxxxxxxA Write these down. You'll need them to connect! VPN client setup: https://vpnsetup.net/clients2 ================================================ ================================================ IKEv2 is already set up. Details for IKEv2 mode: VPN server address: 45.xxx.xxx.xxx VPN client name: vpnclient Client configuration is available inside the Docker container at: /etc/ipsec.d/vpnclient.p12 (for Windows & Linux) /etc/ipsec.d/vpnclient.sswan (for Android) /etc/ipsec.d/vpnclient.mobileconfig (for iOS & macOS) Next steps: Configure IKEv2 clients. See: https://vpnsetup.net/clients2 ================================================ xl2tpd[1]: Not looking for kernel SAref support. xl2tpd[1]: Using l2tp kernel support. xl2tpd[1]: xl2tpd version xl2tpd-1.3.18 started on ecb52605dfe5 PID:1 xl2tpd[1]: Written by Mark Spencer, Copyright (C) 1998, Adtran, Inc. xl2tpd[1]: Forked by Scott Balmos and David Stipp, (C) 2001 xl2tpd[1]: Inherited by Jeff McAdams, (C) 2002 xl2tpd[1]: Forked again by Xelerance (www.xelerance.com) (C) 2006-2016 xl2tpd[1]: Listening on IP address 0.0.0.0, port 1701 xl2tpd[1]: death_handler: Fatal signal 15 received Retrieving previously generated VPN credentials... Trying to auto discover IP of this server... Starting IPsec service... ================================================ IPsec VPN server is now ready for use! Connect to your new VPN with these details: Server IP: 45.xxx.xxx.xxx IPsec PSK: axxxxxxxxxxxxxxxxH Username: vpnuser Password: axxxxxxxxxxxxA Write these down. You'll need them to connect! VPN client setup: https://vpnsetup.net/clients2 ================================================ ================================================ IKEv2 is already set up. Details for IKEv2 mode: VPN server address: 45.xxx.xxx.xxx VPN client name: vpnclient Client configuration is available inside the Docker container at: /etc/ipsec.d/vpnclient.p12 (for Windows & Linux) /etc/ipsec.d/vpnclient.sswan (for Android) /etc/ipsec.d/vpnclient.mobileconfig (for iOS & macOS) Next steps: Configure IKEv2 clients. See: https://vpnsetup.net/clients2 ================================================ xl2tpd[1]: Not looking for kernel SAref support. xl2tpd[1]: Using l2tp kernel support. xl2tpd[1]: xl2tpd version xl2tpd-1.3.18 started on ecb52605dfe5 PID:1 xl2tpd[1]: Written by Mark Spencer, Copyright (C) 1998, Adtran, Inc. xl2tpd[1]: Forked by Scott Balmos and David Stipp, (C) 2001 xl2tpd[1]: Inherited by Jeff McAdams, (C) 2002 xl2tpd[1]: Forked again by Xelerance (www.xelerance.com) (C) 2006-2016 xl2tpd[1]: Listening on IP address 0.0.0.0, port 1701 xl2tpd[1]: death_handler: Fatal signal 15 received` ```
kerem closed this issue 2026-03-02 08:18:49 +03:00
kerem commented 2026-03-02 08:18:49 +03:00
Author
Owner
Copy link

@elf-313 commented on GitHub (Aug 24, 2024):

I see an error -

xl2tpd[1]: Listening on IP address 0.0.0.0, port 1701
xl2tpd[1]: death_handler: Fatal signal 15 received

but I don't know what to do with it, please tell me

<!-- gh-comment-id:2308521369 --> @elf-313 commented on GitHub (Aug 24, 2024): I see an error - xl2tpd[1]: Listening on IP address 0.0.0.0, port 1701 xl2tpd[1]: death_handler: Fatal signal 15 received but I don't know what to do with it, please tell me
kerem commented 2026-03-02 08:18:49 +03:00
Author
Owner
Copy link

@hwdsl2 commented on GitHub (Aug 27, 2024):

@elf-313 Hello! This error is normal: Fatal signal 15 received, it occurs when the Docker container is restarting, for example, at which time the xl2tpd service restarts.

The provided Docker container logs look normal, it looks like the container is running fine. If you are unable to connect, make sure that UDP port 500 and UDP port 4500 are open on your Docker host, and the VPN connection details are correct on the client. For further troubleshooting, enable Libreswan logs and retry the connection, then check the logs. If no new Libreswan logs appear, it is likely that the connection request did not reach the Docker container.

You may also try setting up the VPN on a different server, e.g. a cloud server or VPS.

<!-- gh-comment-id:2311635566 --> @hwdsl2 commented on GitHub (Aug 27, 2024): @elf-313 Hello! This error is normal: `Fatal signal 15 received`, it occurs when the Docker container is restarting, for example, at which time the xl2tpd service restarts. The provided Docker container logs look normal, it looks like the container is running fine. If you are unable to connect, make sure that UDP port 500 and UDP port 4500 are open on your Docker host, and the VPN connection details are correct on the client. For further troubleshooting, [enable Libreswan logs](https://github.com/hwdsl2/docker-ipsec-vpn-server/blob/master/docs/advanced-usage.md#enable-libreswan-logs) and retry the connection, then check the logs. If no new Libreswan logs appear, it is likely that the connection request did not reach the Docker container. You may also try setting up the VPN on a different server, e.g. a cloud server or VPS.
Sign in to join this conversation.
No Branch/Tag specified
Branches Tags
master
No results found.
Labels
Clear labels   
bug

   
pull-request

Mirrored from GitHub Pull Request

  
question

   
question
No labels
bug
pull-request
question
question
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference
starred/docker-ipsec-vpn-server#419
No description provided.