L2TP - set server address



  • hi all,

    my pfsense LAN IP is - 192.168.1.254/24

    should i randomly make up a new network for my server address ie 192.168.50.254 or has it got to be in my  pfsense network range ie - 192.168.1.250

    also what do i make the remote address range

    many thanks

    rob



  • VPN server address / subnet usually needs to be outside of LAN or other network you use on your firewall.



  • This is really all down to you and how you want to structure your network. If you want to keep your server addresses locally, then assign them an address in your local range. If you want to site them remotely, then site them remotely and give them a different class C address. A remote address range can be pretty much anything you like, so long as it's not the same as your local one and you have routing established to transmit traffic between the local and remote sites.



  • Ah makes sense now,  so i set it to my other networks gateway ip address, i have already created a static route for my other network on my pfsense and i kmow it works because i hqve port forwarded smtp to that network to send recieve email

    So my other gateway ip is 172.17.1.253

    So could my l2tp server address be 172.17.1.1

    Alsi my range can it be 172.17.1.2

    I will test this out tonight



  • i attach screenshots to see if im doing anything wrong

    i cant connect on my android phone, im typing everything in correctcly but it cant connect

    my pfsense ip lan address is 10.10.20.254

    l2tpipsec.zip