Feature Request - IPSec/L2TP VPN Support

Discussion in 'Asuswrt-Merlin' started by davewolfs, Jan 9, 2013.

  1. davewolfs

    davewolfs Occasional Visitor

    Joined:
    Jan 4, 2013
    Messages:
    31
    Hello all,

    OpenVPN works great but unfortunately it cannot be used on IOS devices. With that said, IOS devices can only use PPTP with the Asus router (as far as I know). Would it be possible to roll in VPN servers which support the IPSec/L2TP protocols?

    Thanks!
     
  2. Log in / Register to remove this ad

  3. RMerlin

    RMerlin Part of the Furniture

    Joined:
    Apr 14, 2012
    Messages:
    13,673
    Location:
    Canada
    No plan to.

    You can probably manually install and configure IPSEC through Optware/Entware however.
     
  4. davewolfs

    davewolfs Occasional Visitor

    Joined:
    Jan 4, 2013
    Messages:
    31
    Any tutorials on how to do this?
     
  5. RMerlin

    RMerlin Part of the Furniture

    Joined:
    Apr 14, 2012
    Messages:
    13,673
    Location:
    Canada
    Not that I know of. Do a search for Optware and IPSec, see what comes up. I only know that one user posted months ago on the Asus forums that he was able to get it to work.
     
  6. davewolfs

    davewolfs Occasional Visitor

    Joined:
    Jan 4, 2013
    Messages:
    31
  7. RMerlin

    RMerlin Part of the Furniture

    Joined:
    Apr 14, 2012
    Messages:
    13,673
    Location:
    Canada
    I can't remember where it was discussed since that was back last spring. Look for a thread that talks about StrongSwan, however the person didn't mention how he configured it, only that he was able to make it work.
     
  8. ryzhov_al

    ryzhov_al Senior Member

    Joined:
    Jul 23, 2012
    Messages:
    493
    Location:
    Russia
    Here, but some kernel modules is needed.
     
  9. davewolfs

    davewolfs Occasional Visitor

    Joined:
    Jan 4, 2013
    Messages:
    31
    Any chance of putting together something that shows how to get this setup? I'm surprised that there isn't more info on this. Is there a reason why people aren't commonly setting up IPSec?
     
  10. Tartarus

    Tartarus New Around Here

    Joined:
    Oct 26, 2012
    Messages:
    8
    I guess it is because IPSEC is often a pain to get working. It did not work well with NAT until the NAT-T standard emerged since it requires IP protocol 50 to be passed between the gateways. Second, it's often hard to set up due to very basic tools and a complicated protocol (getting two gateways to authenticate towards each other is no guarantee that you can route trafic between subnets across the IPSEC tunnel).

    I have connected numerous networks via IPSEC tunnels in the past 10 years, and for that purpose it works well. For roaming users wishing to connect back to their home network it's a pain and rarely works well. I was thrilled when OpenVPN emerged as an alternative for that kind of setup :)
     

Share This Page