Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Problem with outgoing L2TP VPN connections when using multiple WAN's

    Scheduled Pinned Locked Moved Routing and Multi WAN
    4 Posts 2 Posters 966 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • N
      NaHoW
      last edited by

      Hello

      When I enable loadbalancing and use dual I am unable to estabilish a L2TP VPN connection if the connection isn't made over WAN1.
      I just followed the basic tutorial for multiwan and for the other things it seems to go fine.

      Any hints on what I could have done wrong?

      Kind regards,

      Simon

      1 Reply Last reply Reply Quote 0
      • jimpJ
        jimp Rebel Alliance Developer Netgate
        last edited by

        Is it actually L2TP or is it L2TP/IPsec?

        Remember: Upvote with the ๐Ÿ‘ button for any user/post you find to be helpful, informative, or deserving of recognition!

        Need help fast? Netgate Global Support!

        Do not Chat/PM for help!

        1 Reply Last reply Reply Quote 0
        • N
          NaHoW
          last edited by

          Hmm it doesn't really mention that.
          It's just a VPN made from Windows by the 'Connect to a workplace or VPN wizard'. Default is PTPP but from that I know Pfsense has limitation so I changed the properties and set it to use L2TP.

          1 Reply Last reply Reply Quote 0
          • jimpJ
            jimp Rebel Alliance Developer Netgate
            last edited by

            Then it's L2TP/IPsec and at the firewall level you should be working with udp/500, udp/4500, and ESP traffic. If you have policy routing it's possible the ESP traffic is taking a different path than the UDP traffic which breaks it.

            You need to setup a failover (not load balancing) rule for traffic to the remote VPN server, or maybe use sticky, or maybe your outbound NAT on WAN2 is different (no static port for udp/500 traffic?).

            Remember: Upvote with the ๐Ÿ‘ button for any user/post you find to be helpful, informative, or deserving of recognition!

            Need help fast? Netgate Global Support!

            Do not Chat/PM for help!

            1 Reply Last reply Reply Quote 0
            • First post
              Last post
            Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.