Project

General

Profile

Issue #3155

support of l2tp in StrongSwan

Added by Farhad Sakhaei about 1 year ago. Updated about 1 year ago.

Status:
Closed
Priority:
Normal
Category:
configuration
Affected version:
5.8.0
Resolution:
Invalid

Description

Hi,
I need to add support of l2tp to StrongSwan
because I need to provide remote access to my clients on Windows 7 (Because of problems of fragmentation)
How can I add l2tp compatibility to great StrongSwan?
Any exact sample would be very appreciated
My current ipsec.conf:

config setup
    uniqueids = never

conn %default

    compress = yes
    left = %any
    leftsubnet = 0.0.0.0/0
    leftfirewall = yes
    rightfirewall = yes
    right = %any
    rightsourceip = 192.168.100.0/24
    rightid = %any
    leftdns = 8.8.8.8,8.8.4.4
    rightdns = 8.8.8.8,8.8.4.4

conn STRONGSWAN
    type = transport
    esp = aes256-sha256,aes256-sha1,3des-sha1!
    # Key exchange protocol encryption algorithm list
    ike = aes256-sha256-modp2048,aes256-sha1-modp2048,aes128-sha1-modp2048,3des-sha1-modp2048,aes256-sha256-modp1024,aes256-sha1-modp1024,aes128-sha1-modp1024,3des-sha1-modp1024!
    leftauth = pubkey
    rekey=no
    leftcert = server.cert.pem
    leftsigkey = server.pub.pem
    leftid = 185.17.146.30
    rightauth = eap-mschapv2
    eap_identity = %any
    fragmentation = yes
    forceencaps = yes
    mobike=yes
    auto = add

History

#1 Updated by Tobias Brunner about 1 year ago

  • Category set to configuration
  • Status changed from New to Closed
  • Assignee set to Tobias Brunner
  • Priority changed from High to Normal
  • Resolution set to Invalid

I think UsableExamples has example configs for L2TP. Other than that, L2TP is out of scope here.

Also available in: Atom PDF