Reply To: VPN with both lan to lan and lan to Host.

Home Page Forums Network Management ZeroShell VPN with both lan to lan and lan to Host. Reply To: VPN with both lan to lan and lan to Host.

#44961

imported_fulvio
Participant

You don’t need to permit traffic on TCP or UDP to enable the host-to-LAN VPNs. You just need to allow IPsec clients on ppp0 to be able to comunicate with the L2TP server. In other words, you have to add in the INPUT Chain a rule with Protocol Matching set to ESP (Encap Security Payload) and input interface set to ppp0.
Notice that AH (Authentication Header) is not involved in the L2TP/IPSec VPNs.

Regards
Fulvio