It is currently Mon Aug 21, 2017 7:43 pm

All times are UTC




Post new topic Reply to topic  [ 18 posts ] 
Author Message
 Post subject: Problem with L2TP/IPSec
PostPosted: Mon Sep 15, 2014 3:21 pm 

Joined: Mon Sep 15, 2014 3:03 pm
Posts: 5
Hello Everyone,

I have a problem with connecting to my vpn via L2TP/Ipsec.(Tried using PC & Android)

I'm actually able to connect to it via the Softether client and OpenVPN.

1)My Server is running on RaspberryPi
2)Already did the port forward(UDP 500 & 4500)
3)The setting for l2tp/ipsec is ON as the picture shown (http://imgur.com/TCWC4vl)
4)Local Bridge is used

I did a google search for the error(789) that I received from PC side but still unable to solve the problem.
I'm pretty sure that the pre-shared key is correct, username and password is valid.
Even if I made the server offline, the error that I received was still the same.

May I know if there's any extra setting that needs to be done before I can actually connect it via L2TP/IPSec?
I am willing to open a remote session via TeamViewer if it's needed.

Much appreciate for your help.


Top
 Profile  
Reply with quote  
PostPosted: Mon Sep 15, 2014 4:53 pm 

Joined: Thu Sep 11, 2014 10:06 pm
Posts: 8
Hi! Check 1701/UDP port.


Top
 Profile  
Reply with quote  
PostPosted: Mon Sep 15, 2014 5:07 pm 

Joined: Wed Jul 10, 2013 2:07 pm
Posts: 183
Error 789 souds like a windows client?

Most problems are certifcate errors (MS check it for validation) or not enabled/allowed NAT-T on client side. (its not allowed by default)

Take a look at this post:
viewtopic.php?f=7&t=2710&p=5580&hilit=mmc#p5580


Top
 Profile  
Reply with quote  
PostPosted: Tue Sep 16, 2014 2:12 am 

Joined: Mon Sep 15, 2014 3:03 pm
Posts: 5
letun4eg wrote:
> Hi! Check 1701/UDP port.

I have actually enabled all these ports
http://imgur.com/elmUlA5
including 1701,443,4500,500,5000,1194

It connects when I'm using the local network ip. But when I want to use the public ip, it rejects( using android phone)


Top
 Profile  
Reply with quote  
PostPosted: Tue Sep 16, 2014 5:58 am 

Joined: Thu Sep 11, 2014 10:06 pm
Posts: 8
If you can connect in the local network and cann't connect outside - check port forwarding if you using nat.


Top
 Profile  
Reply with quote  
PostPosted: Wed Sep 24, 2014 7:34 am 

Joined: Mon Feb 24, 2014 11:03 am
Posts: 2292
Could you connect another L2TP server?
http://www.vpngate.net/en/


Top
 Profile  
Reply with quote  
PostPosted: Wed Sep 24, 2014 9:40 am 

Joined: Mon Sep 15, 2014 3:03 pm
Posts: 5
thisjun wrote:
> Could you connect another L2TP server?
> http://www.vpngate.net/en/

Hi thisjun, I'm able to connect to the public l2tp server.

Wondering if my ISP blocks the L2TP traffic.

Only able to connect via local IP.


Top
 Profile  
Reply with quote  
PostPosted: Mon Sep 29, 2014 3:40 am 

Joined: Mon Sep 29, 2014 3:37 am
Posts: 2
It appears I'm having almost the exact same issue. I can connect just fine from inside my network but can't once I try from the public side. My ports are forwarded and I even tried putting the server into DMZ and it still didn't help.


Top
 Profile  
Reply with quote  
PostPosted: Mon Sep 29, 2014 12:38 pm 

Joined: Mon Sep 29, 2014 3:37 am
Posts: 2
I went to bed and when I tried it the morning, it seemed to work.


Top
 Profile  
Reply with quote  
PostPosted: Tue Sep 30, 2014 2:42 pm 

Joined: Mon Sep 15, 2014 3:03 pm
Posts: 5
crashcarstar wrote:
> I went to bed and when I tried it the morning, it seemed to work.

May I have a screenshot of the port forwarding to allow me to check if I missed out some port

Thanks


Top
 Profile  
Reply with quote  
PostPosted: Wed Oct 01, 2014 4:02 am 

Joined: Mon Sep 15, 2014 3:03 pm
Posts: 5
Strange problem now, it can connect sometimes.


Top
 Profile  
Reply with quote  
PostPosted: Thu Oct 09, 2014 6:14 am 

Joined: Mon Feb 24, 2014 11:03 am
Posts: 2292
Could you show me your VPN Server log?


Top
 Profile  
Reply with quote  
PostPosted: Tue Nov 11, 2014 8:19 pm 

Joined: Mon Nov 10, 2014 6:04 pm
Posts: 1
Please, friends of this community, gone out for all. The truth I am new in softether, is the well-read one the manuals and tutoriales of the page, but there are things that I do not understand. Example: 1. Not he which is the name of the servant to form IPsec To enable L2TP / in android 2.3.6 when I believe newly configuration, to connect, then paper clip to the option L2TP / IPsec and follow all the steps that estan in the tutoriales and documents, but on no part it shows me like is called my servant, then to place it in my android. thank you, agradesco helps


Top
 Profile  
Reply with quote  
PostPosted: Sat Jun 03, 2017 6:00 pm 

Joined: Sat Jun 03, 2017 5:49 pm
Posts: 4
I have the same problem.
When i use L2TP client on win7, i have a 789 error.
Android L2TP client doesn,t connect too.
But i can connect to my server via Softether client on port 5555.
Ports 1701, 500, 4500 on server are opened in iptables.
And there is nothing in server security log.
Does it mean, that provider on the server-side blocks l2tp traffic?


Top
 Profile  
Reply with quote  
PostPosted: Thu Jun 15, 2017 5:37 am 

Joined: Mon Feb 24, 2014 11:03 am
Posts: 2292
Does the server have global IP address?


Top
 Profile  
Reply with quote  
PostPosted: Mon Jun 19, 2017 5:53 am 

Joined: Sat Jun 03, 2017 5:49 pm
Posts: 4
thisjun wrote:
> Does the server have global IP address?
Yes, it has.
I can connect it via softether vpn client, but can not connect via windows l2tp client and android l2tp client.


Top
 Profile  
Reply with quote  
PostPosted: Thu Jun 22, 2017 4:55 am 

Joined: Thu Jun 01, 2017 2:48 am
Posts: 6
>> Does the server have global IP address?
>Yes, it has.

I have seen this with server running on AWS - in this case, the server has a private IP and the public IP is DMZed to the server. This screws with IPSec. If your ifconfig does NOT show your public IP, this could be the problem.
This does turn up in the logs though, IIRC.


Top
 Profile  
Reply with quote  
PostPosted: Thu Jul 06, 2017 7:25 am 

Joined: Mon Feb 24, 2014 11:03 am
Posts: 2292
SoftEther VPN Client can connect to the VPN server which doesn't have global IP address.


Top
 Profile  
Reply with quote  
Display posts from previous:  Sort by  
Post new topic Reply to topic  [ 18 posts ] 

All times are UTC


You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot post attachments in this forum

Search for:
Jump to:  
Powered by phpBB® Forum Software © phpBB Group
Return to www.softether.org