Hi,
2014/1/23 Patrik Flykt <[email protected]> > > Hi, > > On Thu, 2014-01-23 at 14:17 +0800, Chengyi Zhao wrote: > > I would like to connect the l2tp VPN via ConnMan, but I can't connect > > the xl2tp server, Please share following configure files to me: > > connman-xl2tpd.conf > > connman-ppp-option.conf > > You have to set up the l2tp parameters according to your network > configuration, there is no generic config file that can work for you out > of the box. > > The l2tp parameters are described in doc/vpn-config-format.txt, please > read that documentation. connman-xl2tpd.conf and connman-ppp-option.conf > are generated on the fly by the l2tp plugin according to the l2tp > configuration. There are no practical means to modify those config files > after they have been written by ConnMan. > > And do notice that l2tp provides ABSOLUTELY NO security, l2tp and pptp > must be protected by IPSec in order to be called a VPN. And there is no > IPSec implemented for connman-vpnd yet. > > Thanks a lot. OK, now I understand the connection logic, and I think upstream can add some rules to connman/vpn/connman-task.te for allowing l2tp and pptp vpn clients to access net.connman.Task dbus interface. current connman-task.te: ---------------------------------------------------------------------------- # SElinux policy file for allowing various vpn clients # to access net.connman.Task dbus interface module connman-task 1.0; require { type openvpn_t; type openconnect_t; type vpnc_t; type initrc_t; class dbus send_msg; } allow openvpn_t initrc_t:dbus send_msg; allow openconnect_t initrc_t:dbus send_msg; allow vpnc_t initrc_t:dbus send_msg; ----------------------------------------------------------------------------- Cheers, Chengyi _______________________________________________ connman mailing list [email protected] https://lists.connman.net/mailman/listinfo/connman
