Got my RB1000 yesterday. Installed in our colocation, firewall setup for all our servers. That works great.
Started configuring the 50+ RB450s we have out there to use L2TP/IPSEC. Works for crap with dynamic IPs. The only way I can get it to work properly is to put the clients CURRENT ip address as the SA source in the policy. If I leave it at 0.0.0.0 (Should mean dynamic), it doesnt work right. It sends 0.0.0.0 over to the RB1000 side for generating the policy.
Then I decided to just use OpenVPN. Except certificate authentication doesnt work. Only username/password.
What am I supposed to do? Is everything regarding vpn setups broken in some way, or am I missing something?
Still cant get Windows to work as an IPSEC/L2TP client.
Im really striking out here. Great product from a firewall/hotspot standpoint, not so great when it comes to VPNs.
ROS 4.4 FWIW.