On Sat, Jan 20, 2007 at 06:00:57PM +0800, Demuel I. Bendano, R.E.E wrote: > Has anyone did a successful implementation of L2TP+FreeRadius in OpenBSD?
Not that I know of. If you look through the archives of this list, a few weeks ago I posted a port of rp-l2tp. However, it doesn't work properly. Because OpenBSD doesn't have Linux's N_HDLC synchronous line discipline, I ended up just using async PPP to communicate between the kernel ppp driver and rp-l2tp. It kind of works, but gets stuck when you send more than 1024 bytes at a time. I asked about the problem here, as I don't know about the internal operation of ptys, but got no response. I suspect the 'best' way to go about this would be to extend the userland ppp daemon to support l2tp as a transport mechanism (which incidentally would also give you RADIUS support, which you want). However I couldn't even get the existing PPP over UDP implementation to work; furthermore, with l2tp, you really want to be able to run multiple sessions over the same tunnel. (And also tunnel-switch l2tp to l2tp, PPPoE to l2tp and so on) So at the moment I think your best bet is to use Linux - sorry. (FreeBSD has a kernel netgraph L2TP implementation, but I found it to be unreliable. Maybe it has improved. But anyway, its control daemon is very noddy and uses a local XML file for authentication, not RADIUS) HTH, Brian.
