Set Up L2TP Ipsec VPN client for asus RT-AC86U in Ubuntu

  • ATTENTION! As of November 1, 2020, you are not able to reply to threads 6 months after the thread is opened if there are more than 500 posts in the thread.
    Threads will not be locked, so posts may still be edited by their authors.
    Just start a new thread on the topic to post if you get an error message when trying to reply to a thread.


Occasional Visitor
I have an asus AC86U router with a VPN iPsec server that I've managed to configure and make it work in my Iphone and in my windows PC with the guides that asus have without much problem.

but know I have a proyect to make a raspberry pi that delivers that VPN troguth a lan port,and I'm struggling to make it work.

I've installed the strongswan vpn client and configured the pages like the example scenarios they have in their website with the scenario Ikev1+Xauth (That is what Asus uses for IPsec,I think) but I can't manage to find the Xauth key in my asus config page from router,and I'm not sure if I've done the config files well.
the VPN doesn't even respond to the first package when I try to start the client,and I'm sure the VPN is working since I use my Iphone client to check it before triying to start the VPN

these are the ipsec.config and ipsec.secrets files:

the net in my home network is with gateway,and the same for the network that has the server.

and the virtual Ip range for the VPN is

this is the ipsec.config file

# ipsec.conf - strongSwan IPsec configuration file

# basic configuration

config setup
# strictcrlpolicy=yes
# uniqueids = no

# Add connections here.
conn %default

conn asusrouter
left= #strongswan outside address
leftsubnet= #network behind strongswan
leftid= #IKEID sent by strongswan
right=(my server DDNS) #IOS outside address
rightsubnet= #network behind IOS
rightid=(my server DDNS) #IKEID sent by IOS

and this is the ipsec.secrets file

# This file holds shared secrets or RSA private keys for authentication.

# RSA private key for this host, authenticating it to any other host
# which knows the public part. PSK (my pre-shared key)
(VPN user): EAP (vpn password)
Similar threads
Thread starter Title Forum Replies Date
H Low speed on Wireguard vs IPSec VPN 6

Similar threads

Latest threads

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!