L2TP + IPSec outside access problem

xgoos · October 30, 2013, 3:35pm

Hallo
I just confugured L2TP tunnel over IPSec. I’m able to establish it if the device is inside LAN area. But whan I want to connect device from outside (via public IP) there is no L2TP response. (IPSec is established). Can anybody help me, please?

[admi@mt] /ip firewall filter> print
Flags: X - disabled, I - invalid, D - dynamic
2 chain=input action=accept protocol=udp dst-port=500,1701,4500
3 chain=input action=accept protocol=ipsec-esp

[admi@mt] /ip ipsec peer> print
Flags: X - disabled
0 address=0.0.0.0/0 passive=no port=500 auth-method=pre-shared-key secret=“test” generate-policy=port-override exchange-mode=main-l2tp send-initial-contact=yes nat-traversal=yes hash-algorithm=sha1
enc-algorithm=3des dh-group=modp1024 lifetime=1d dpd-interval=2m dpd-maximum-failures=5

[admi@mt] /interface l2tp-server server> print
enabled: yes
max-mtu: 1450
max-mru: 1450
mrru: disabled
authentication: mschap2
keepalive-timeout: 30
default-profile: L2TP_profile

Than U

iBlueDragon · October 31, 2013, 3:53am

Hi,

What do you want to achieve? Do you want to enable road warriors to connect to your network or do you want to connect two routers?

For road warriors check out this thread: http://forum.mikrotik.com/t/solved-l2tp-ipsec-with-android/61619/1

Also watch the MUM presentation linked in Tomas’ signature to secure your VPN configuration.

Kind regards,
iBlueDragon

xgoos · October 31, 2013, 4:08pm

Thanks iBlueDragon,

I’ll have a look on that thread. Just to give all info. Need to enable road warriors.