Community discussions

MikroTik App
  4. RouterOS
  5. Beginner Basics

Configuring LT2P/IPSEC

Locked
 
gargiulo5000
just joined
Topic Author
Posts: 10
Joined: Fri Feb 16, 2018 6:31 pm

Configuring LT2P/IPSEC

Wed Mar 14, 2018 10:29 pm

Hi,
i am doing my best to trying to connect my mikrotik to VPN as a client
Mikrotik is connected to a modem/router on the web.
All the ports are open for IPSEC to work but it can connect ONLY if IPSEC is not selected. "Use Ipsec" unchecked.

There is my log output when trying to connect:
Code: Select all
21:21:12 l2tp,ppp,info l2tp-out1: initializing... 
21:21:12 l2tp,ppp,info l2tp-out1: connecting... 
21:21:12 ipsec,info initiate new phase 1 (Identity Protection): 192.168.0.13[500]<=>95.xxx.xxx.xxx[500] 
21:21:13 ipsec,info ISAKMP-SA established 192.168.0.13[4500]-95.xxx.xxx.xxx[4500] spi:9c309e10551adb26:4d7d8701e529719a 
21:21:36 l2tp,ppp,info l2tp-out1: terminating... - session closed 
21:21:36 l2tp,ppp,info l2tp-out1: disconnected 
21:21:37 ipsec,info ISAKMP-SA deleted 192.168.0.13[4500]-95.xxx.xxx.xxx[4500] spi:9c309e10551adb26:4d7d8701e529719a rekey:1 
21:21:46 l2tp,ppp,info l2tp-out1: initializing... 
21:21:46 l2tp,ppp,info l2tp-out1: connecting... 
21:21:46 ipsec,info initiate new phase 1 (Identity Protection): 192.168.0.13[500]<=>95.xxx.xxx.xxx[500] 
21:21:47 ipsec,info ISAKMP-SA established 192.168.0.13[4500]-95.xxxx.xxxx.xxx[4500] spi:58cd0c52346c410e:64c3ee19971e9cfa 
21:22:10 l2tp,ppp,info l2tp-out1: terminating... - session closed 
21:22:10 l2tp,ppp,info l2tp-out1: disconnected 
21:22:11 ipsec,info ISAKMP-SA deleted 192.168.0.13[4500]-95.xxx.xxx.xxx[4500] spi:58cd0c52346c410e:64c3ee19971e9cfa rekey:1 
21:22:20 l2tp,ppp,info l2tp-out1: initializing... 
21:22:20 l2tp,ppp,info l2tp-out1: connecting... 
21:22:20 ipsec,info initiate new phase 1 (Identity Protection): 192.168.0.13[500]<=>95.xxx.xxx.xxx[500] 
21:22:21 ipsec,info ISAKMP-SA established 192.168.0.13[4500]-95.xxx.xxx.xx[4500] spi:fdb2293eb3fabd48:5a04504ed1333ab8 
21:22:44 l2tp,ppp,info l2tp-out1: terminating... - session closed 
21:22:44 l2tp,ppp,info l2tp-out1: disconnected
Any help would be highly appreciated.
Thank you very much for your help.

Best regards
Top
 
TTTko
just joined
Posts: 3
Joined: Mon Mar 12, 2018 7:19 pm

Re: Configuring LT2P/IPSEC

Wed Mar 14, 2018 10:59 pm

Hi there,
i had similar issues. Try to switch off fast track
IP->Firewall->Filter Rules and disable fasttrack there
Top
 
gargiulo5000
just joined
Topic Author
Posts: 10
Joined: Fri Feb 16, 2018 6:31 pm

Re: Configuring LT2P/IPSEC

Fri Mar 16, 2018 1:44 pm

Hi,
i am making progress.
Due to the fact that i get the "NO-PROPOSAL CHOSEN" Error back from the server, i assume that i'm using wrong combination of Hash and encryption.
The problem is that when i change the default proposal on IPSEC options it seems to me that is not changing hash and encryption, looking at the logs it seems that my changes are not accepted even if i get the message "default ipsec proposal changed by admin" or something like this.

Any help would be appreciated.
Top
 
gargiulo5000
just joined
Topic Author
Posts: 10
Joined: Fri Feb 16, 2018 6:31 pm

Re: Configuring LT2P/IPSEC

Fri Mar 16, 2018 11:33 pm

Update.
It is really strange and i do not understand why it keeps choosing the same parameters even if i change the default proposal for ipsec.
I can see clearly on the log that.
I don't understand, please someone help!!
Top
Locked

Who is online

Users browsing this forum: No registered users and 35 guests
  4. RouterOS
  5. Beginner Basics