Community discussions

MikroTik App
 
nanogi
just joined
Topic Author
Posts: 8
Joined: Wed Feb 08, 2017 12:15 am

L2TP not connecting on Windows client

Sun Aug 02, 2020 3:12 am

hello, i have (not so) successfully set up a l2tp server on my mikrotik rb750. I can connect through VPN using an android and an ios client, but i can't connect using my windows pc. my mikrotik log says
"ipsec, error no suitable proposal found.
ipsec, error xxx.xxx.xxx.xxx failed to get valid proposal
ipsec, error xxx.xxx.xxx.xxx failed to pre-process ph-1 packet (side:1, status 1).
ipsec, error xxx.xxx.xxx.xxx phase1 negotiation failed"

i've tried every possible configuration out on the internet with no success, i can't connect with my pc. i can connect using pptp but not l2tp, but i can connect through l2tp with android and ios. does anyone know how to configure it to get it to work with all the devices?
 
erlinden
Forum Guru
Forum Guru
Posts: 1920
Joined: Wed Jun 12, 2013 1:59 pm
Location: Netherlands

Re: L2TP not connecting on Windows client

Sun Aug 02, 2020 10:56 am

Is Windows up-to-date?
Can you please share you configuration?
  • /ppp export hide-sensitive
  • /ip ipsec export hide-sensitive
 
nanogi
just joined
Topic Author
Posts: 8
Joined: Wed Feb 08, 2017 12:15 am

Re: L2TP not connecting on Windows client

Sun Aug 02, 2020 5:47 pm

Is Windows up-to-date?
Can you please share you configuration?
  • /ppp export hide-sensitive
  • /ip ipsec export hide-sensitive
Yes, windows is up to date, I'm using windows 10
Ipsec export
# aug/02/2020 11:40:33 by RouterOS 6.43.16
# software id = SK3K-ZFCW
#
# model = RB750Gr3
# serial number = 8B010B6F77A1
/ip ipsec peer profile
set [ find default=yes ] dh-group=modp1024 enc-algorithm=aes-256,3des \
    hash-algorithm=sha256
/ip ipsec proposal
set [ find default=yes ] auth-algorithms=sha256,sha1 enc-algorithms=\
    aes-256-cbc,aes-128-cbc,3des
Ppp export
# aug/02/2020 11:38:49 by RouterOS 6.43.16
# software id = SK3K-ZFCW
#
# model = RB750Gr3
# serial number = 8B010B6F77A1
/ppp profile
add bridge=bridge1 local-address=151.151.150.1 name=VPN remote-address=\
    vpn_dhcp
set *FFFFFFFE only-one=no
/ppp secret
add local-address=151.150.8.7 name=hernang profile=default-encryption \
    remote-address=151.150.8.8
add local-address=151.150.4.4 name=carlos profile=default-encryption \
    remote-address=151.150.4.5
add local-address=151.151.150.1 name=nanogi profile=VPN
add local-address=151.151.150.1 name=lautaro profile=VPN
 
erlinden
Forum Guru
Forum Guru
Posts: 1920
Joined: Wed Jun 12, 2013 1:59 pm
Location: Netherlands

Re: L2TP not connecting on Windows client

Sun Aug 02, 2020 11:52 pm

In your case I would start by updating RouterOS (before upgrading, do a /export file=router to get a complete configuration).
You are running a very old version at the moment!

Next to that, your encryption is not so strong. I use 3des and pfs-group modp4096
 
mikruser
Long time Member
Long time Member
Posts: 578
Joined: Wed Jan 16, 2013 6:28 pm

Re: L2TP not connecting on Windows client

Mon Aug 03, 2020 12:17 am

Set these values:
Proposal: aes-128cbc/sha1/modp1024
Profile: sha1/aes-128/ecp256
 
raytaylor
just joined
Posts: 21
Joined: Wed Dec 28, 2011 12:19 pm
Location: Melbourne

Re: L2TP not connecting on Windows client

Sat May 21, 2022 2:18 am

Can confirm the last post above just worked for me from mikruser
 
User avatar
atomicduck
Member Candidate
Member Candidate
Posts: 244
Joined: Fri Oct 02, 2020 1:42 pm

Re: L2TP not connecting on Windows client

Fri Dec 30, 2022 1:26 pm

Set these values:
Proposal: aes-128cbc/sha1/modp1024
Profile: sha1/aes-128/ecp256
Had the same problem, and these work fine. I tested on latest Win 10.

Who is online

Users browsing this forum: boocko, Michiganbroadband and 87 guests