Hello,
I have a question on you guys.
I have 2 RB1100 connected together over L2TP ipsec VPN and i need to do this:
First RB1100 is connected to the internet on eth1 and L2TP server running
Second RB1100 is connected to the internet on eth1 and connected as a cilent to first RB1100
I need to Send all traffic regardless of IP from eth2 (First RB1100) to eth2 on second RB1100 - actually make something like wire connection from eth2 to eth2 over VPN
Is this possible ?
Thanks for answers
Your only question is “is this possible” so the correct answer would be “yes”, but I guess you want to know how to do that.
The solution is to set up an L2 tunnel between the two RouterBoards over the L2TP tunnel, and bridge the virtual interface terminating the tunnel with ether2 at each machine.
Over an L2TP tunnel, you can use an EoIP tunnel, which is slightly easier to configure, or a bridged ppp tunnel using BCP. But in both cases there’s a lot of encapsulation layers, so stting up the EoIP tunnel directly over IPsec (without the L2TP intermediate layer) would be more efficient.