openl2tp.org

ftp://ftp.openl2tp.org/releases/openl2tp-1.0

V1.0, 11-FEB-2008

IMPORTANT: THIS RELEASE MUST BE USED WITH KERNEL 2.6.23.5 OR LATER

- Remove dependency on the kernel driver package (pppol2tp-kmod) which
  has been integrated into the official kernel since 2.6.23.5.

- Add RPC TCP support. In versions before V1.0, the management API was
  UDP only. While UDP is adequate for most environments, the option of
  using TCP may be more appropriate in commercial installations. TCP
  also has the advantage that RPC packets may be larger than 8K, which
  avoids RPC errors in the l2tpconfig "list" commands when there are
  so many items to list that 8K is not enough space. Select TCP using
  the new "-t" argument to l2tpconfig. Note that this affects only the
  management protocol between l2tpconfig and openl2tpd, it does not
  change L2TP itself.

- Send L2TP Hello messages even if we have transmitted or received data
  packets in the tunnel. The previous behaviour was to minimize Hello
  messages, but other L2TP implementations send Hello regardless of
  data traffic. So let's do the same.

- Fix endian issue with the src_ipaddr parameter of tunnel
  profiles. This caused a bind() error and the tunnel setup
  failed. The problem reported by Ben McKeegan.

- Fix a potential race condition which might cause openl2tpd to crash
  if a tunnel is deleted when it contains sessions.

- If a session does not have a pppol2tp socket yet, don't throw a "bad
  file descriptor" error when reading session status (e.g. l2tpconfig
  session show command). Instead, show the session data with all PPP
  data counters zero.

- When establishing PPP sessions using UNIX pppd, use a setup timer to
  detect cases where pppd fails to signal its state to openl2tpd
  properly when the system is under severe load conditions.

- Add a -y  parameter to openl2tpd to configure a maximum ppp
  setup rate. When starting or stopping pppd processes per session,
  openl2tpd will limit the number of active processes to the specified
  value. PPP processes are deemed active when they are trying to
  connect to their peer, until the IP connection is made. This
  parameter does not limit the total number of pppd processes - it
  only limits the number of those processes that are created
  simultaneously by openl2tpd. Use this option when starting openl2tpd
  if the system becomes overloaded when lots of sessions are created
  simultaneously, for example when persistant tunnels recover. Most
  users are unlikely to need this option.

- Handle ERESTART error return from connect() and retry connect() calls
  if EINTR or ERESTART is returned. This can happen when IPSec is used.
  Previously we relied on the IP stack retry during IPSec tunnel setups.

- Change default PPP version to 2.4.4.

- Update debian package directory.