Hi Guys
Does anyone have an installation guide for Ubuntu 16.04 that I can send my users to self-installations?
On the official guide is Ubuntu 12
Thnk you !!!
I have not tested it, but this guide looks promising.
http://www.jasonernst.com/2016/06/21/l2tp-ipsec-vpn-on-ubuntu-16-04/
This looks very promising - and easier.
http://blog.z-proj.com/enabling-l2tp-over-ipsec-on-ubuntu-16-04/
I did this and it works for me:
No one should be using 3des for anything new. Does aes128 work instead?
I believe you can call in and request AES - I'm gonna have to do this so I can get a VPN node in my datacenter rack....
AES is available by default. You don't need to do anything.
Good deal - I haven't tested with linux / mac yet but it's full on awesome with AD - all the information for using an l2tpd client show 3des - I had to call in to get some features enabled for I believe some wireless or maybe a firewall setting so it would not surprise me if the same had to happen for AES.
Hi, can u give me details? Tks. I cant do it on 18.04
@ PigMan - I just used your suggestion for Ubuntu 19.10 and it worked. Thanks!
On Linux Mint 19.3 tricia, never worked like that. And when i was triyng on Ubuntu, difeerent versions either. What a bad luck
I'm also on Mint 19.3 and have had issues getting the VPN to work. Will be setting aside some time today (hopefully) to work on finding a solution.
Go ahead. Iĺl be listening. Iḿ also on LM 19.3, and still doesnt work.
This works great for Ubuntu 18.04 LTS as well.
#15 from @PigMan can be changed to "aes128-sha1" instead of using 3DES. Phase1 has to stay 3DES.
Quick instructions from me :
1. Update and clean up the machine first
sudo apt-get update
sudo apt-get dist-upgrade
sudo reboot
# Wait for reboot, log back in
sudo apt autoremove
2. Install VPN Software
sudo apt-get install strongswan xl2tpd net-tools
sudo apt-get install network-manager-l2tp network-manager-l2tp-gnome
sudo apt-get install network-manager-strongswan
sudo reboot
3. After reboot, Turn off the L2TP Server, we only want the client
sudo service xl2tpd stop
sudo systemctl disable xl2tpd
4. Setup the VPN per @PigMan's instructions:
I am finally circling back to this.
I can confirm that changing the phase 2 algorithm to "aes128-sha1" fixes the VPN connection on Linux Mint 19.3
(at least it did for me)
Thank you so much for finding this solution.
Worked for me for Ubuntu v20.04 LTS, thanks
In order to address the IKE Aggressive Mode vulnerability, you can contact Meraki support and have them change the minimum DH group to 14 (from 2) and enable AES128 instead of 3DES. With those changes made, I found that this configuration works for connecting Ubuntu to the client VPN:
TLDR: use aes128 instead of 3des and modp2048 (DH group 14) instead of modp1024 (DH group 2) for the Phase 1 and 2 algorithms, uncheck all options except for PAP
Hi Folks.
Tried always to configure the L2TP client under Debian Buster. Trying to connect to an MX64. Connection works fine on latest ios All I get is a pop-down at the top of the screen:
Connection Failed
Activation of the connection failed
Any thoughts anybody please?
TIA
MikeB2
Hi folk i allways tried this since 2 years from here to connect MX84, and allways get that message but necer have tried to make connection. Do you have your stepd to do that to tru follow? Tks.
Hi folk i allways tried this since 2 years from here to connect MX84, and allways get that message but necer have tried to make connection. Do you have your stepd to do that to tru follow? Tks.
Hey Juanfer
I used the steps posted in this thread. But unable to connect. I am hoping the is a Debian Buster user out there who has this fixed.