{"id":3036,"date":"2022-10-07T13:29:43","date_gmt":"2022-10-07T04:29:43","guid":{"rendered":"https:\/\/www.kinryo.net\/?p=3036"},"modified":"2022-10-07T14:28:12","modified_gmt":"2022-10-07T05:28:12","slug":"centos7-%e3%81%8b%e3%82%89l2tp-ipsec-%e3%81%a7%e3%83%a4%e3%83%9e%e3%83%8frtx830%e3%81%abvpn%e6%8e%a5%e7%b6%9a%e3%82%92%e3%81%99%e3%82%8b","status":"publish","type":"post","link":"https:\/\/www.kinryo.net\/?p=3036","title":{"rendered":"CentOS7 \u304b\u3089L2TP\/IPSec \u3067\u30e4\u30de\u30cfRTX830\u306bVPN\u63a5\u7d9a\u3092\u3059\u308b"},"content":{"rendered":"\r\n<p>\u3053\u308c\u306b\u306f\u968f\u5206\u82e6\u52b4\u3057\u305f\u3002\u5148\u305a\u306f\u8a2d\u5b9a\u3001CentOS7\u306f\u30c7\u30d5\u30a9\u30eb\u30c8\u3067L2TP\/IPSec\u304c\u7121\u3044\u306e\u3067\u30a4\u30f3\u30b9\u30c8\u30fc\u30eb\u3002<br \/><span style=\"color: #ff6600;\">#<\/span> <span style=\"color: #008000;\">yum -y install NetworkManager-l2tp-gnome<\/span><br \/>\u3053\u308c\u3067NetworkManager-l2tp\u3082\u30a4\u30f3\u30b9\u30c8\u30fc\u30eb\u3055\u308c\u308b<br \/>\u3067\u3082\u3063\u3066\u53f3\u4e0a\u306e\u96fb\u6e90\u30dc\u30bf\u30f3\u3092\u30af\u30ea\u30c3\u30af\u3057\u3001\u66f4\u306bVPN\u3092\u30af\u30ea\u30c3\u30af\u3001\u30d7\u30eb\u30c0\u30a6\u30f3\u304c\u958b\u304f\u306e\u3067VPN\u8a2d\u5b9a\u3092\u30af\u30ea\u30c3\u30af\u3002VPN\u306e\u53f3\u306e\u65b9\u306b\u3042\u308b+\u3092\u30af\u30ea\u30c3\u30af\u3002\u958b\u3044\u305f\u30a6\u30a3\u30f3\u30c9\u30a6\u3067Layer 2 Tunneling Protocol (L2TP)\u3092\u30af\u30ea\u30c3\u30af<img loading=\"lazy\" decoding=\"async\" src=\"https:\/\/www.kinryo.net\/wp-content\/uploads\/2022\/10\/VPN1.png\" alt=\"\" class=\"alignnone size-full wp-image-3038\" width=\"585\" height=\"462\" srcset=\"https:\/\/www.kinryo.net\/wp-content\/uploads\/2022\/10\/VPN1.png 585w, https:\/\/www.kinryo.net\/wp-content\/uploads\/2022\/10\/VPN1-300x237.png 300w, https:\/\/www.kinryo.net\/wp-content\/uploads\/2022\/10\/VPN1-150x118.png 150w\" sizes=\"auto, (max-width: 585px) 100vw, 585px\" \/><br \/>\u540d\u524d\u306f\u4efb\u610f\u3001\u30b2\u30fc\u30c8\u30a6\u30a7\u30a4\u306fVPN\u30b5\u30fc\u30d0\u30fc\u306e\u540d\u524d\u304bIP\u30a2\u30c9\u30ec\u30b9\u3001\u30e6\u30fc\u30b6\u30fc\u540d\u3068\u30d1\u30b9\u30ef\u30fc\u30c9\u306f\u30b5\u30fc\u30d0\u30fc\u306b\u8a2d\u5b9a\u3057\u3066\u3044\u308b\u3082\u306e\u3002\u305d\u3057\u3066&#8221;IPsec Settings&#8230;&#8221;\u3092\u30af\u30ea\u30c3\u30af <img loading=\"lazy\" decoding=\"async\" src=\"https:\/\/www.kinryo.net\/wp-content\/uploads\/2022\/10\/VPN2.png\" alt=\"\" class=\"alignnone size-full wp-image-3039\" width=\"354\" height=\"542\" srcset=\"https:\/\/www.kinryo.net\/wp-content\/uploads\/2022\/10\/VPN2.png 354w, https:\/\/www.kinryo.net\/wp-content\/uploads\/2022\/10\/VPN2-196x300.png 196w, https:\/\/www.kinryo.net\/wp-content\/uploads\/2022\/10\/VPN2-98x150.png 98w\" sizes=\"auto, (max-width: 354px) 100vw, 354px\" \/><br \/>Pre-shared Key\u306b\u306f\u30b5\u30fc\u30d0\u30fc\u306e\u8a2d\u5b9a\u3057\u3066\u3042\u308b\u5171\u6709\u9375\u3092\u5165\u529b\u3002Remote ID\u306f\u6700\u521d\u306f\u7a7a\u6b04\u3002<br \/>\u3053\u308c\u3067\u63a5\u7d9a\u3059\u308b\u304c\u3001\u5c11\u3057\u3057\u3066VPN\u304c\u81ea\u52d5\u7684\u306bOFF\u306b\u306a\u308b\u3002\u3053\u306e\u30eb\u30fc\u30bf\u30fc\u306b\u306fwindows10\u3067\u7e4b\u3063\u304c\u3066\u3044\u308b\u306e\u3067\u30eb\u30fc\u30bf\u30fc\u306e\u8a2d\u5b9a\u3067\u306f\u306a\u3055\u305d\u3046\u3002\u306a\u306e\u3067\u3001RTX830\u306e\u30ed\u30b0\u3092\u898b\u308b\u3068<br \/><span style=\"color: #ff6600;\">[IKE] respond ISAKMP phase to xx.xx.xx.xx<\/span>\u306f\u3042\u308b\u304c\u3001\u305d\u306e\u6b21\u306e<span>[IKE] respond IPsec phase to<\/span>\u304c\u7121\u3044\u3002\u3068\u3044\u3046\u4e8b\u306f\u30ed\u30fc\u30ab\u30eb\u304b\u3089RTX830\u306b\u63a5\u7d9a\u8981\u6c42\u306f\u884c\u3063\u3066\u3044\u308b\u304c\u3001IPsec\u3067\u3064\u307e\u305a\u3044\u3066\u3044\u308b\u307f\u305f\u3044\u3002<br \/>\u6b63\u5e38\u6642\u306e\u30ed\u30b0\u306f<br \/><span style=\"color: #ff6600;\">[IKE] respond ISAKMP phase to xx.xx.xx.xx<\/span><br \/><span style=\"color: #ff6600;\">[IKE] respond IPsec phase to xx.xx.xx.xx<\/span><br \/><span style=\"color: #ff6600;\">IP Tunnel[4] Up<\/span><br \/><span style=\"color: #ff6600;\">[L2TP] TUNNEL[4] connected from xx.xx.xx.xx<\/span><br \/><span style=\"color: #ff6600;\">[L2TP] TUNNEL[4] tunnel 6020 established<\/span><br \/><span style=\"color: #ff6600;\">[L2TP] TUNNEL[4] session 47201 established<\/span><br \/><span style=\"color: #ff6600;\">PP[ANONYMOUS04] Call detected from user &#8216;xxxxxxxxx&#8217;<\/span><br \/><span style=\"color: #ff6600;\">PP[ANONYMOUS04] PPP\/IPCP up (Local: 192.168.xx.xx, Remote: 192.168.xx.xx)<\/span><br \/>\u3068\u306a\u3063\u3066\u3044\u308b\u3002\u3053\u3053\u3067\u8272\u3005google\u5148\u751f\u3092\u8abf\u3079\u308b\u304c\u3082\u3046\u4e00\u3064\u89e3\u3089\u306a\u3044\u3002\u4e2d\u306b\u306f\u30b0\u30e9\u30d5\u30a3\u30ab\u30eb\u8a2d\u5b9a\u3067\u306f\u7e4b\u304c\u3089\u306a\u3044\u306e\u3067\u3001\u30b3\u30de\u30f3\u30c9\u3092\u8a2d\u5b9a\u3057\u63a5\u7d9a\u3092\u3057\u3066\u305f\u308a\u3059\u308b\u3002<br \/>\u306a\u306e\u3067\u3001CentOS\u306e\u30ed\u30b0\u3092\u898b\u308b\u3002\/var\/log\/message\u3092\u958b\u304d\u8abf\u3079\u308b\u3068\u4f55\u30f5\u6240\u304b<br \/><span style=\"color: #ff6600;\">NetworkManager: 003 &#8220;ccb30400-8415-4eb8-89cb-9a2b19bfceff&#8221; #1: we require IKEv1 peer to have ID &#8216;xx.xx.xx.xx&#8217;, but peer declares &#8216;YY.YY.YY.YY&#8217;<\/span><br \/>\u306e\u8868\u793a\u304c\u3042\u308b\u3002&#8217;xx.xx.xx.xx&#8217;\u306f\u30b0\u30ed\u30fc\u30d0\u30ebIP\u3067&#8217;YY.YY.YY.YY&#8217;\u306f\u30ed\u30fc\u30ab\u30ebIP\u3002<br \/>\u30b0\u30ed\u30fc\u30d0\u30ebIP\u306b\u63a5\u7d9a\u3057\u305f\u304c\u3001\u8fd4\u3063\u3066\u6765\u305fIP\u306fRTX830\u306e\u30ed\u30fc\u30ab\u30eb\u5074\u306eIP\u3002<br \/>\u305d\u3053\u3067\u3082\u3057\u304b\u3057\u305f\u3089\u3068\u3001\uff12\u756a\u76ee\u306e\u753b\u9762\u306e<img loading=\"lazy\" decoding=\"async\" src=\"https:\/\/www.kinryo.net\/wp-content\/uploads\/2022\/10\/VPN3.png\" alt=\"\" class=\"size-full wp-image-3040 alignright\" width=\"304\" height=\"81\" srcset=\"https:\/\/www.kinryo.net\/wp-content\/uploads\/2022\/10\/VPN3.png 304w, https:\/\/www.kinryo.net\/wp-content\/uploads\/2022\/10\/VPN3-300x80.png 300w, https:\/\/www.kinryo.net\/wp-content\/uploads\/2022\/10\/VPN3-150x40.png 150w\" sizes=\"auto, (max-width: 304px) 100vw, 304px\" \/><br \/>\u8d64\u5b57\u306e\u6240\u306bRTX830\u306e\u30eb\u30fc\u30bf\u30fc\u306e<br \/>\u30ed\u30fc\u30ab\u30ebIP\u3092\u5165\u308c\u3001\u63a5\u7d9a\u3059\u308b\u3068\u3001<br \/>\u3084\u3063\u3068\u7e4b\u304c\u3063\u305f\u3001\u30d0\u30f3\u30b6\u30a4\u30fc\u30a4\uff01\uff01<\/p>\r\n\r\n\r\n","protected":false},"excerpt":{"rendered":"<p>\u3053\u308c\u306b\u306f\u968f\u5206\u82e6\u52b4\u3057\u305f\u3002\u5148\u305a\u306f\u8a2d\u5b9a\u3001CentOS7\u306f\u30c7\u30d5\u30a9\u30eb\u30c8\u3067L2TP\/IPSec\u304c\u7121\u3044\u306e\u3067\u30a4\u30f3\u30b9\u30c8\u30fc\u30eb\u3002# yum -y install NetworkManager-l2tp-gnome\u3053\u308c\u3067NetworkManag &hellip; <a href=\"https:\/\/www.kinryo.net\/?p=3036\">\u7d9a\u304d\u3092\u8aad\u3080 <span class=\"meta-nav\">&rarr;<\/span><\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"vkexunit_cta_each_option":"","footnotes":""},"categories":[10],"tags":[],"class_list":["post-3036","post","type-post","status-publish","format-standard","hentry","category-linux"],"acf":[],"_links":{"self":[{"href":"https:\/\/www.kinryo.net\/index.php?rest_route=\/wp\/v2\/posts\/3036","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.kinryo.net\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.kinryo.net\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.kinryo.net\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.kinryo.net\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=3036"}],"version-history":[{"count":7,"href":"https:\/\/www.kinryo.net\/index.php?rest_route=\/wp\/v2\/posts\/3036\/revisions"}],"predecessor-version":[{"id":3046,"href":"https:\/\/www.kinryo.net\/index.php?rest_route=\/wp\/v2\/posts\/3036\/revisions\/3046"}],"wp:attachment":[{"href":"https:\/\/www.kinryo.net\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=3036"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.kinryo.net\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=3036"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.kinryo.net\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=3036"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}