Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search

    L2TP vpn between PfSense server and Mikrotik client

    General pfSense Questions
    2
    6
    67
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • E
      econst last edited by

      I have setup a VPN server on PfSense and connect to it from a Mikrotik device as client. The connection is established and routes are configured at both ends to point to the other end. I can ping devices on the PfSense LAN from the Mikrotik, but not the other way around, ie, I can not ping a device on the Mikrotik LAN from the PfSense server. This is pure L2TP. Any that I may have missed?

      1 Reply Last reply Reply Quote 0
      • stephenw10
        stephenw10 Netgate Administrator last edited by

        A firewall rule on the Mikrotik?

        Check the state table when you are pinging. Make sure it's opening states and on the correct interfaces.

        Run a packet capture. Make sure traffic is actually leaving pfSense.

        Steve

        E 1 Reply Last reply Reply Quote 0
        • E
          econst @stephenw10 last edited by

          @stephenw10
          I see nothing on a packet capture and no states opened for the interface( which would be l2tp1). So more than likely a problem on the PfSense end.

          1 Reply Last reply Reply Quote 0
          • stephenw10
            stephenw10 Netgate Administrator last edited by

            Ok, do you traffic blocked in the firewall logs?

            Do you see it opening states on a different interface? Routed out of the WAN directly perhaps?

            I think we will need to see some details of your config.

            Steve

            E 1 Reply Last reply Reply Quote 0
            • E
              econst @stephenw10 last edited by

              @stephenw10
              no states opened, not even on WAN. Also don't see the firewall blocking anything.

              How do I copy the VPN section of the config?

              1 Reply Last reply Reply Quote 0
              • stephenw10
                stephenw10 Netgate Administrator last edited by

                You can download the complete config from Diag > Backup & Restore then extract the config from that (with redactions).
                Or post screenshots.

                Steve

                1 Reply Last reply Reply Quote 0
                • First post
                  Last post

                Products

                • Platform Overview
                • TNSR
                • pfSense Plus
                • Appliances

                Services

                • Training
                • Professional Services

                Support

                • Subscription Plans
                • Contact Support
                • Product Lifecycle
                • Documentation

                News

                • Media Coverage
                • Press
                • Events

                Resources

                • Blog
                • FAQ
                • Find a Partner
                • Resource Library
                • Security Information

                Company

                • About Us
                • Careers
                • Partners
                • Contact Us
                • Legal
                Our Mission

                We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

                Subscribe to our Newsletter

                Product information, software announcements, and special offers. See our newsletter archive to sign up for future newsletters and to read past announcements.

                © 2021 Rubicon Communications, LLC | Privacy Policy