vyos/vyos-documentation
1
0
Fork 0
mirror of https://github.com/vyos/vyos-documentation.git synced 2025-12-19 20:12:07 +01:00
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #233 from currite/L2TPoIPsec

Browse Source 
l2tp: adding small details
This commit is contained in:
Daniil Baturin 2020-04-03 07:24:26 +07:00 committed by GitHub
commit aa49da2045
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 6 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

9
docs/vpn/l2tp.rst
View File

@ -35,7 +35,8 @@ to allow the ports below:
* IP protocol number 50 (ESP) * IP protocol number 50 (ESP)
* UDP port 1701 for IPsec * UDP port 1701 for IPsec
As well as the below to allow NAT-traversal: As well as the below to allow NAT-traversal (when NAT is detected by the
VPN client, ESP is encapsulated in UDP for NAT-traversal):
* UDP port 4500 (NAT-T) * UDP port 4500 (NAT-T)
@ -74,8 +75,9 @@ parameter to the client.
set vpn l2tp remote-access dns-servers server-1 '8.8.8.8' set vpn l2tp remote-access dns-servers server-1 '8.8.8.8'
set vpn l2tp remote-access dns-servers server-2 '8.8.4.4' set vpn l2tp remote-access dns-servers server-2 '8.8.4.4'
.. note:: Those are the `Google public DNS`_ servers. You can also use the .. note:: Those are the `Google public DNS`_ servers, but you can choose
public available servers from Quad9_ (9.9.9.9) or Cloudflare_ (1.1.1.1). any public available servers, like Quad9_ (9.9.9.9), Cloudflare_ (1.1.1.1)
or OpenNIC_.
Established sessions can be viewed using the **show vpn remote-access** Established sessions can be viewed using the **show vpn remote-access**
operational command, or **show l2tp-server sessions** operational command, or **show l2tp-server sessions**
@ -226,6 +228,7 @@ renamed.
.. _`Google Public DNS`: https://developers.google.com/speed/public-dns .. _`Google Public DNS`: https://developers.google.com/speed/public-dns
.. _Quad9: https://quad9.net .. _Quad9: https://quad9.net
.. _CloudFlare: https://blog.cloudflare.com/announcing-1111 .. _CloudFlare: https://blog.cloudflare.com/announcing-1111
.. _OpenNIC: https://www.opennic.org/
.. _RADIUS: https://en.wikipedia.org/wiki/RADIUS .. _RADIUS: https://en.wikipedia.org/wiki/RADIUS
.. _FreeRADIUS: https://freeradius.org .. _FreeRADIUS: https://freeradius.org
.. _`Network Policy Server`: https://en.wikipedia.org/wiki/Network_Policy_Server .. _`Network Policy Server`: https://en.wikipedia.org/wiki/Network_Policy_Server