vyos/vyos-documentation
1
0
Fork 0
mirror of https://github.com/vyos/vyos-documentation.git synced 2025-10-26 08:41:46 +01:00
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #233 from currite/L2TPoIPsec

Browse Source 
l2tp: adding small details
This commit is contained in:
Daniil Baturin 2020-04-03 07:24:26 +07:00 committed by GitHub
commit aa49da2045
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 6 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

9
docs/vpn/l2tp.rst
View File

@ -35,7 +35,8 @@ to allow the ports below:
* IP protocol number 50 (ESP)
* UDP port 1701 for IPsec
As well as the below to allow NAT-traversal:
As well as the below to allow NAT-traversal (when NAT is detected by the
VPN client, ESP is encapsulated in UDP for NAT-traversal):
* UDP port 4500 (NAT-T)
@ -74,8 +75,9 @@ parameter to the client.
set vpn l2tp remote-access dns-servers server-1 '8.8.8.8'
set vpn l2tp remote-access dns-servers server-2 '8.8.4.4'
.. note:: Those are the `Google public DNS`_ servers. You can also use the
public available servers from Quad9_ (9.9.9.9) or Cloudflare_ (1.1.1.1).
.. note:: Those are the `Google public DNS`_ servers, but you can choose
any public available servers, like Quad9_ (9.9.9.9), Cloudflare_ (1.1.1.1)
or OpenNIC_.
Established sessions can be viewed using the **show vpn remote-access**
operational command, or **show l2tp-server sessions**
@ -226,6 +228,7 @@ renamed.
.. _`Google Public DNS`: https://developers.google.com/speed/public-dns
.. _Quad9: https://quad9.net
.. _CloudFlare: https://blog.cloudflare.com/announcing-1111
.. _OpenNIC: https://www.opennic.org/
.. _RADIUS: https://en.wikipedia.org/wiki/RADIUS
.. _FreeRADIUS: https://freeradius.org
.. _`Network Policy Server`: https://en.wikipedia.org/wiki/Network_Policy_Server