L2TP vpn between PfSense server and Mikrotik client
-
I have setup a VPN server on PfSense and connect to it from a Mikrotik device as client. The connection is established and routes are configured at both ends to point to the other end. I can ping devices on the PfSense LAN from the Mikrotik, but not the other way around, ie, I can not ping a device on the Mikrotik LAN from the PfSense server. This is pure L2TP. Any that I may have missed?
-
A firewall rule on the Mikrotik?
Check the state table when you are pinging. Make sure it's opening states and on the correct interfaces.
Run a packet capture. Make sure traffic is actually leaving pfSense.
Steve
-
@stephenw10
I see nothing on a packet capture and no states opened for the interface( which would be l2tp1). So more than likely a problem on the PfSense end. -
Ok, do you traffic blocked in the firewall logs?
Do you see it opening states on a different interface? Routed out of the WAN directly perhaps?
I think we will need to see some details of your config.
Steve
-
@stephenw10
no states opened, not even on WAN. Also don't see the firewall blocking anything.How do I copy the VPN section of the config?
-
You can download the complete config from Diag > Backup & Restore then extract the config from that (with redactions).
Or post screenshots.Steve