EdgeRouter Lite with Firmware 1.9.0
L2TP PSK Mode.
WAN interface: eth1
LAN IP: 192.168.3.1
VPN Subnets: 192.168.47.1-192.168.47.99
Run commands below in ‘configure mode’.
1 Configure IPSec
|
1 2 3 4 |
set vpn ipsec auto-firewall-nat-exclude disable set vpn ipsec ipsec-interfaces interface eth1 set vpn ipsec nat-networks allowed-network 0.0.0.0/0 set vpn ipsec nat-traversal enable |
2 Configure L2TP
|
1 2 3 4 5 6 7 8 9 |
set vpn l2tp remote-access authentication local-users username USERNAME password PASSWORD set vpn l2tp remote-access authentication mode local set vpn l2tp remote-access client-ip-pool start 192.168.47.1 set vpn l2tp remote-access client-ip-pool stop 192.168.47.99 set vpn l2tp remote-access dns-servers server-1 192.168.3.1 set vpn l2tp remote-access ipsec-settings authentication mode pre-shared-secret set vpn l2tp remote-access ipsec-settings authentication pre-shared-secret PreShar3dSecRe7 set vpn l2tp remote-access ipsec-settings ike-lifetime 3600 set vpn l2tp remote-access outside-address 0.0.0.0 |
3 Configure DNS
Make sure you have following lines, otherwise you can get DNS resolved.
|
1 2 |
set service dns forwarding options bind-interfaces set service dns forwarding options except-interface=eth1 |
L2TP Remote Access Server on UBNT EdgeRouter by @sskaje: https://sskaje.me/2016/10/l2tp-remote-access-server-ubnt-edgerouter/
Link to this post!