This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

L2TP over IPSec

I created a remote access using L2TP over IPSec,when i connect from home i can reach my DMZ but not to the LAN.
The steps i followed are.
Created a User with Authentication Local and X509 Certificate:username(X509 User Cert)
Defined Packet Filter Rule
user---any---any
Nat Masquerading Rule
user---External Network
Remote Access
Interface:External
Authentication Mode[:P]reshared key
Assign IP address by : IP address pool
Pool Network:L2TP Pool
Authentication via:Local
Added User here

Also does not show up anything in the log files.

This thread was automatically locked due to age.

Parents

0 Jack Daniel over 17 years ago

Does the remote (client) network use the same IP address range as the LAN? That could be the problem if you can navigate one network segment but not another.
Cancel
Vote Up 0 Vote Down

Cancel
0 preet over 17 years ago in reply to Jack Daniel

Thanks that was the problem the client using the same IP as LAN.Now it works.
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 preet over 17 years ago in reply to Jack Daniel

Thanks that was the problem the client using the same IP as LAN.Now it works.
Cancel
Vote Up 0 Vote Down

Cancel

Children

0 danny71395 over 17 years ago in reply to preet

i have this type of problems from /var/log/auth.log
ERROR: asynchronous network error report on eth1 (sport=500) for message to 60.51.211.53 port 500, complainant 60.51.211.53: Connection refused [errno 111, origin ICMP type 3 code 3 (not authenticated)]

max number of retransmissions (2) reached STATE_MAIN_I1. No response (or no acceptable response) to our first IKE message
000 "roadwarrior" #4: starting keying attempt 2 of at most 3, but releasing whack
Cancel
Vote Up 0 Vote Down

Cancel