How can I use docker without sudo?

Question

apitsch

Asked: 2017-11-18 23:34:41 +0800 CST2017-11-18 23:34:41 +0800 CST 2017-11-18 23:34:41 +0800 CST

L2TP/IPSec VPN connection on Ubuntu 17.10 - Connection failed: Activation of network connection failed

772

Despite considering all the following posts,

[1] L2TP IPsec VPN client on Ubuntu 14.10 [2] How to connect to L2TP over IPSec VPN? [3] How to connect to L2TP over IPSec VPN? [4] l2tp/ipsec problem [5] Can´t connect VPN using network-manager-l2tp [6] L2TP/IPsec NetworkManager plugin using only username, password and PSK

I have been unable to set up a connection to my university's VPN.

Although strongswan and network-manager-l2tp are running, and all data (gateway/vpn ip, username, password, pre-shared key, phase1 & phase2 algorithms) are entered, I get the error message that the "Connection failed: Activation of network connection failed."

What am I missing?

EDIT 1:

ike-scan
terminal output:

130.82.18.20 Main Mode Handshake returned HDR=(CKY-R=e8f536147acee1d4) SA=(Enc=3DES Hash=SHA1 Group=2:modp1024 Auth=PSK LifeType=Seconds LifeDuration=28800) VID=4048b7d56ebce88525e7de7f00d6c2d3c0000000 (IKE Fragmentation)

Thus, I have set the "Advanced Options"-Tab to:
Phase 1 = 3des-sha1-modp1024
Phase 2 = 3des-sha1
[no UDP encapsulation]

system xl2tpd

Stopping the system xl2tpd in the terminal hasn't helped either.

2 Answers

Voted

Douglas Kosovic · Answer 1 · 2017-11-22T03:12:45+08:00

I assume you are using network-manager-l2tp-1.2.8 and network-manager-l2tp-gnome-1.2.8 packages that are available in the default Ubuntu 17.10 repository.

Have you tried stopping and disabling the system xl2tpd ? More details in the README.md file :

https://github.com/nm-l2tp/network-manager-l2tp#issue-with-not-stopping-system-xl2tpd-service

What is the output of running ike-scan.sh script against your university's VPN server? You can find more details on the following page:

https://github.com/nm-l2tp/network-manager-l2tp/wiki/Known-Issues#querying-vpn-server-for-its-supported-ipsec-ikev1-algorithms

After seeing the output of ike-scan.sh I can advise what the phase1 & phase2 algorithms should be.

Also from the README.md file, you could look at the journalctl --boot output to help with the debugging, alternatively after issuing the following, try performing a VPN connection, which will then result in debugging info going to the terminal :

sudo killall -TERM nm-l2tp-service
sudo /usr/lib/NetworkManager/nm-l2tp-service --debug

apitsch · Answer 2 · 2018-01-06T04:12:32+08:00

Best Answer

apitsch

2018-01-06T04:12:32+08:002018-01-06T04:12:32+08:00

The solution/workaround to my problem was basically described in this answer to a similar question:

How do I install the Cisco Anyconnect VPN client?

Running

sudo apt-get install network-manager-openconnect-gnome

and configuring the VPN with the newly available ''Cisco Anyconnect Compatible VPN (openconnect)'' did its job.

0

L2TP/IPSec VPN connection on Ubuntu 17.10 - Connection failed: Activation of network connection failed

How to install Google Chrome

Is there a command to list all users? Also to add, delete, modify users, in the terminal?

How to delete a non-empty directory in Terminal?

How to unzip a zip file from the Terminal?

How can I copy the contents of a folder to another folder in a different directory using terminal?

How do I install a .deb file via the command line?

How do I run .sh scripts?

How do I install a .tar.gz (or .tar.bz2) file?

How to list all installed packages

Unable to lock the administration directory (/var/lib/dpkg/) is another process using it?