Differences

This shows you the differences between two versions of the page.

--- networking:router:mikrotik_vpn_l2tp [2016/05/13 13:01]
jcooper
+++ networking:router:mikrotik_vpn_l2tp [2019/08/14 14:13] (current)
gcooper
@@ Line 1: / Line 1: @@
 ====== Mikrotik L2TP VPN ======
+**RouterOS v6.44 or above**: https://saputra.org/threads/mikrotik-l2tp-over-ipsec-vpn-server-tutorial-guide-for-routeros-v6-44.106/
+Stats: http://rickfreyconsulting.com/mikrotik-vpns/
+New info? http://wiki.mikrotik.com/wiki/Manual:IP/IPsec#Road_Warrior_setup_with_Mode_Conf
 FIXME Needs verification and completion
@@ Line 15: / Line 21: @@
 **PPP -> Interface -> L2TP Server -> Enable**
-  * MTU 1450
+  * Max MTU
-  * Authentication uncheck chap and pap leave MSCHAPv2 and MSCHAv1
+    * L2TP has 40-byte overhead
-  * Check Use IPsec enter IPsec Secret needed to configure client
+    * 1450 - Lowering the MTU can speed up VPN - test path MTU first
+    * 1460 - Default - Good if uplink MTU is 1500
+  * Default Profile
+    * Select ''default-encryption'' or create your own profile
+  * Authentication
+    * De-select ''chap'' and ''pap''
+    * Select ''MSCHAPv2'' and ''MSCHAP1''
+  * Select ''Use IPsec''
+  * Enter IPsec Secret needed to configure client
+  * Click ''OK''
 ===== Create IP Pool for Multiple Users =====
@@ Line 24: / Line 39: @@
   * Name L2TPpool
-  * Range of addresses (192.168.1.10-192.168.1.20)
+  * Range of addresses e.g. (192.168.1.10-192.168.1.20) outside of LAN DHCP range
 **PPP -> Profiles -> Default-Encryption**
@@ Line 33: / Line 48: @@
 **PPP -> Interface -> L2TP Server**
-  * Specify Default Profile (Default-Encryption)
+  * Specify Default Profile -> ''default-encryption''
-===== Create Single Users =====
+===== Create Users =====
 **PPP -> Secrets -> Add+**

Virtual Architects Support Wiki

User Tools

Site Tools

Differences

Page Tools