CARP + L2TP



  • Hello,

    could you please to share a solution if it exists? I have no problems with CAPR + pure IPsec,
    but recently we have decided to switch to L2TP.

    L2TP GUI configuration does not provide any CARP address to select for the field "Interface". If I select "WAN" as the
    L2TP Interface, L2TP clients, configured to use CARP VIP, get no answers. Making a port forwarding for udp/1701 on
    the carp vip to 127.0.0.1:1701, as it was suggested here https://forum.pfsense.org/index.php?topic=64851.0
    did not help. Trying to make additionally an outbound NAT for WAN udp/1701 also did not help.

    We use pfSense 2.2.2.

    Best regards
    yarick123



  • Ok, it seems, that there is no workaround to use L2TP on a CARP-Interface. Pity.

    Best regards
    yarick123



  • I have migrated to IKEv2 because of the strongswan's L2TP implementation does not work for the clients behind their firewall.

    IKEv2 works with CARP without any problem!

    Best regards
    yarick123


Log in to reply