Did Mikrotik support Authentificated L2TP tunnels, so we can then replace couple of ours cisco with Mikrotik.
Here is Cisco config:
vpdn enable
!
vpdn-group 1
accept-dialin
protocol l2tp
virtual-template 1
terminate-from hostname cvxtunel
source-ip 212.200.XXX.XXX
l2tp tunnel password 0 pass1
!
vpdn-group 2
accept-dialin
protocol l2tp
virtual-template 2
terminate-from hostname tunelcvx
source-ip 212.200.XXX.XXX
l2tp tunnel password 0 pass2
!
vpdn-group 3
accept-dialin
protocol l2tp
virtual-template 1
terminate-from hostname cvxtest
source-ip 212.200.XXX.XXX
l2tp tunnel password 0 pass3
!
We try configuring Mikrotik, but there is no option to specify tunnel password for configuration.
Any Advice ?
This is configuration, which worked for me together with RouterOS as L2TP server.
Cisco L2TP configuration,
aaa new-model
!
!
aaa authentication login default local
aaa authentication ppp default local
vpdn enable
!
vpdn-group 1
! Default L2TP VPDN group
accept-dialin
protocol l2tp
virtual-template 1
no l2tp tunnel authentication
!
username test_1 password 0 test_1
!
interface Virtual-Template1
ip unnumbered FastEthernet0/0
ip mtu 1492
peer default ip address pool test
no keepalive
ppp encrypt mppe auto
ppp authentication pap chap ms-chap ms-chap-v2
ppp multilink
!
ip local pool test 1.1.1.1 1.1.1.10
But, problem is here becouse LAC is at our public Telekom and they insist to have
l2tp tunnel authentication like :
l2tp tunnel password 0 pass1
so we need to have that type of configuration.
At our side is LNS and we are searching solution how to replace our cisco with Mikrotik and to be able to use the same configuration
vpdn-group 1
accept-dialin
protocol l2tp
virtual-template 1
terminate-from hostname cvxtunel
source-ip 212.200.XXX.XXX
l2tp tunnel password 0 pass1
Can we configure pass1 somewhere at Mikrotik?