Page 1 of 1
Multiple L2TP-IPsec clients behind same NAT.
Posted: Sat Jun 14, 2014 11:21 am
by Oooo1
Do SoftEther support multiple L2TP/IPsec clients behind the same NAT configuration ?
That is some different clients with different Win OSes is behind one NAT with one external IP and is it possible multiple connections from such clients when only one IP - NAT external IP will be as IP of incoming connection.
Re: Multiple L2TP-IPsec clients behind same NAT.
Posted: Sun Jun 15, 2014 1:42 am
by dnobori
Unfortunately, that is impossible by the design of IPsec protocol.
When using IPsec, the server port is fixed to UDP 500/4500. This cannot be changed.
Therefore, the NAT cannot switch the client's requests to multiple appropriate VPN servers behind the NAT.
Re: Multiple L2TP-IPsec clients behind same NAT.
Posted: Sun Jun 15, 2014 1:01 pm
by Oooo1
Limitation of L2TP or IPSec ?
Look at this:
http://wiki.strongswan.org/issues/365
Re: Multiple L2TP-IPsec clients behind same NAT.
Posted: Sun Jun 15, 2014 2:29 pm
by Oooo1
It sound strange, but I have been able to establish connections from 2 cleints: Win XP and Win 7 sited behind one external IP NAT.
And the cliens has been got different IPs fron specified in SecureNAT dhcp pool.
Re: Multiple L2TP-IPsec clients behind same NAT.
Posted: Tue Jun 17, 2014 10:37 am
by dnobori
I mean that you cannot setup and run two different L2TP/IPsec servers behind a single NAT.
Re: Multiple L2TP-IPsec clients behind same NAT.
Posted: Fri Jun 27, 2014 10:17 pm
by Oooo1
Ohh, no.
I need to connect 2+ clients sited behind the same nat on some subnet but on the same subnet (for both or more clients) to 1 the same l2tp/ipsec server sited on other net behind its nat also.
But 2 clients will have the same external source IP - their nat IP.
Do SoftEther support such mode ?
Re: Multiple L2TP-IPsec clients behind same NAT.
Posted: Thu Jul 24, 2014 7:18 am
by thisjun
What error is occurring in such environment?