CARP + L2TP



  • Hello,

    could you please to share a solution if it exists? I have no problems with CAPR + pure IPsec,
    but recently we have decided to switch to L2TP.

    L2TP GUI configuration does not provide any CARP address to select for the field "Interface". If I select "WAN" as the
    L2TP Interface, L2TP clients, configured to use CARP VIP, get no answers. Making a port forwarding for udp/1701 on
    the carp vip to 127.0.0.1:1701, as it was suggested here https://forum.pfsense.org/index.php?topic=64851.0
    did not help. Trying to make additionally an outbound NAT for WAN udp/1701 also did not help.

    We use pfSense 2.2.2.

    Best regards
    yarick123



  • Ok, it seems, that there is no workaround to use L2TP on a CARP-Interface. Pity.

    Best regards
    yarick123



  • I have migrated to IKEv2 because of the strongswan's L2TP implementation does not work for the clients behind their firewall.

    IKEv2 works with CARP without any problem!

    Best regards
    yarick123