Upcoming Maintenance Alert:

The UBNT Community will be upgraded at 5pm MDT on April 25th. During this time the community forums will be set to read-only status.

Learn more

×

L2TP over IPSec client implementation

Submitted by -
Status: New Idea

Dear all,

 

I would like to see the feature implemented of having an L2TP over IPSec client running on the EdgeRouter. We have serval instances where we need this for client implementation where native IPSec to IPSec is due to technical restriction on the remote end is not an option. My thoughts to the features would be:

- ideally configurable via GUI

- define specific remote networks for routing (or have them advertised by head-end)

- status shown in vpn section

 

I have also seen some others asking for such a solution in the forums, so I am hoping for some support for this implementation request.

 

Kind regards,

 

Edge2Unifi

Comments
by
on ‎04-19-2017 06:31 AM

100% support from me.  

Hopefully most of the technology is already in there with the site-to-site configuration, but in this case we're just tunneling to an end-point that we do not have control of (so IP address, username/password only etc).

 

In lesser consumer routers they include this feature as an 'L2TP internet connection' (so embedding /chaining it with the ISP uplink)

by
on ‎04-20-2017 08:34 AM

I was searching for this option just today.

 

100% support for the request from edge2unifi!

by
on ‎04-23-2017 07:59 PM

That would be fantastic! 

by
a month ago
Not sure what this means "define specific remote networks for routing (or have them advertised by head-end)" and I don't really care about the GUI, but would love to see support for tunneling that uses offloading
by
2 weeks ago

This needs to happen i only got this router hoping it will will do L2TP over IPSEC as a client.

might have to get a refund and go with some one else. 

 

Close yet so fare.

by
Wednesday

This would certainly open doors for me. OpenVPN works, however the ~9Mb/s ceiling is frustrating. The ability to terminate a client-to-site L2TP/IPsec connection on the router, with HW offload to ensure it is not the bottleneck, would be fantastic.

 

 

As it's a fairly advanced feature, I think it would be very reasonable to have it only configurable via the CLI (at least initially, depending on demand - especially if it means a sooner release!).