Community discussions

 
sdugoten
Frequent Visitor
Frequent Visitor
Topic Author
Posts: 63
Joined: Wed Aug 04, 2010 7:55 pm

*NEED HELP* L2TP client connection + Secret question

Sat Aug 09, 2014 5:19 pm

I have joined a VPN company which only support L2TP connection. There is no problem to configure the L2TP connection on Windows or Iphone, however, when it comes to the RouterOS, I run into a problem.

I configure the L2TP connection like the picture below, but there is no option for me to specify the "secret" field. The VPN provide me 4 fields to login to their VPN server

VPN server IP
Username
Password
Secret

I have search the web but I can't even find one example how to configure L2TP client connection with a "secret" field. Anyone can give a hand please?

Image

On a iphone VPN setting, it has a field called "Secret" which I can't find the same thing in RouterOS L2TP client conneciton

Image
Last edited by sdugoten on Sat Aug 09, 2014 6:46 pm, edited 1 time in total.
 
marizo
newbie
Posts: 33
Joined: Sun May 04, 2014 8:41 pm

Re: *NEED HELP* L2TP client connection + Secret question

Sat Aug 09, 2014 6:14 pm

You're already made profile pppClient. And Under PPP - Secrets You can create new "user", assign it to that profile.
 
sdugoten
Frequent Visitor
Frequent Visitor
Topic Author
Posts: 63
Joined: Wed Aug 04, 2010 7:55 pm

Re: *NEED HELP* L2TP client connection + Secret question

Sat Aug 09, 2014 6:43 pm

You're already made profile pppClient. And Under PPP - Secrets You can create new "user", assign it to that profile.
I think the "user" under the secret tab is for creating username that VPN into the Mikrotik router which use as L2TP server. I am trying to use Mikrotik router to VPN out to a vpn company use as a L2TP client.
 
jaytcsd
Member Candidate
Member Candidate
Posts: 288
Joined: Wed Dec 29, 2004 9:50 am
Location: Pittsboro IN
Contact:

Re: *NEED HELP* L2TP client connection + Secret question

Sun Aug 24, 2014 9:02 am

Did you try adding it under IP / IPsec / Peer?
I know that's where it's used as an L2TP server.
 
sdugoten
Frequent Visitor
Frequent Visitor
Topic Author
Posts: 63
Joined: Wed Aug 04, 2010 7:55 pm

Re: *NEED HELP* L2TP client connection + Secret question

Sun Aug 24, 2014 9:25 am

Did you try adding it under IP / IPsec / Peer?
I know that's where it's used as an L2TP server.
For other router, L2TP client should come with a text field called "Secret"...just like the iphone. However, RouterOS just doesn't have it.

Image
 
Rudios
Forum Veteran
Forum Veteran
Posts: 966
Joined: Mon Mar 11, 2013 12:58 pm
Location: The Netherlands

Re: *NEED HELP* L2TP client connection + Secret question

Sun Aug 24, 2014 11:45 am

Like jaytcsd mentioned, it is the pre shared key, on your ipsec configuration
Testing setup with: 2 x RB750UP | 2 x RB750GL | 1 x RB951G-2HnD | 1 x RB2011UiAS-IN
 
sdugoten
Frequent Visitor
Frequent Visitor
Topic Author
Posts: 63
Joined: Wed Aug 04, 2010 7:55 pm

Re: *NEED HELP* L2TP client connection + Secret question

Sun Aug 24, 2014 11:51 am

Like jaytcsd mentioned, it is the pre shared key, on your ipsec configuration
If it is a ipsec configuration, I wonder if you have any example to do that for L2TP? Because most ipsec configuration would need the local IP address of the destination which obviously the VPN company won't provide.
 
tinka
Frequent Visitor
Frequent Visitor
Posts: 54
Joined: Wed Dec 02, 2009 5:48 pm

Re: *NEED HELP* L2TP client connection + Secret question

Sun Aug 24, 2014 12:47 pm

I would try to follow something like this

http://wiki.hidemyass.com/Mikrotik

and perhaps a bit more recent (with ipsec and secret)

https://support.hidemyass.com/hc/en-us/ ... ewer-#l2tp
 
lambert
Long time Member
Long time Member
Posts: 533
Joined: Fri Jul 23, 2010 1:09 am

Re: *NEED HELP* L2TP client connection + Secret question

Mon Aug 25, 2014 3:57 am

Upgrade to RouterOS 6.18 and check the new Use IPsec option in the L2TP server config window. Then put your secret in there.

If you don't upgrade to RouterOS 6.18, or later, you get to manually configure IPsec for yourself..
 
jaytcsd
Member Candidate
Member Candidate
Posts: 288
Joined: Wed Dec 29, 2004 9:50 am
Location: Pittsboro IN
Contact:

Re: *NEED HELP* L2TP client connection + Secret question

Mon Aug 25, 2014 9:35 am

http://wiki.mikrotik.com/wiki/L2TP_%2B_ ... ik_routers

the shared secret is the word "test" in this example


/ip ipsec peer add address=10.0.16.9/32 auth-method=pre-shared-key dh-group=modp1024 \
disabled=no dpd-interval=disable-dpd dpd-maximum-failures=1 enc-algorithm=3des \
exchange-mode=main generate-policy=no hash-algorithm=sha1 lifebytes=0 lifetime=1d \
my-id-user-fqdn="" nat-traversal=no proposal-check=obey secret=test send-initial-contact=yes

Who is online

Users browsing this forum: MSN [Bot] and 112 guests