Hello, I am trying to activate L2TP Tunnelling with other ISP. (This is the main ISP who also controls the almost evey backbone). They are also our provider too, so basically we are in their local.
They have given us these information;
Local IP: 10.22.0.1
Peer IP: 10.220.0.1
Peer Name: somepeername
This is the topology I created, if I understood correctly (their information doesn’t make a sense to me);
2.jpg
Configuration;
> ip ipsec policy print
1 XI src-address=0.0.0.0/0 src-port=any dst-address=0.0.0.0/0 dst-port=any protocol=all action=encrypt level=require ipsec-protocols=esp
tunnel=yes sa-src-address=195.175.83.*** sa-dst-address=10.220.0.1 proposal=default priority=0
> ip ipsec peer print
0 X address=10.220.0.1/32 local-address=10.22.0.1 passive=no port=500 auth-method=pre-shared-key secret="*****" generate-policy=no
policy-template-group=default exchange-mode=main mode-config=request-only send-initial-contact=yes nat-traversal=no proposal-check=obey
hash-algorithm=sha1 enc-algorithm=3des dh-group=modp1024 lifetime=1d lifebytes=0 dpd-interval=disable-dpd dpd-maximum-failures=5
> ip ipsec proposal print
0 X* name="default" auth-algorithms=sha1 enc-algorithms=3des lifetime=30m pfs-group=modp1024
When I try to activate peer, I got disconnected from router immediately, and I can only login with mac address.