L2TP clients (iOS, Android) can't reach server

[msiep]

I've set up SoftEther on a Trisquel GNU/Linux machine and can administer it with the Windows GUI, but so far have been unable to get it to actually work for L2TP clients on iOS and Android, which seem unable to even reach the server. I'd very much appreciate any help! Here's my configuration info:

1. Operating system name and the type of CPU-bits

Trisquel GNU/Linux 7.0, Belenos (GNU/Linux 3.13.0-40-generic i686) (32-bit)

2. The result of "ifconfig –a" (UNIX) or "ipconfig /all" (Windows)

eth0 Link encap:Ethernet HWaddr 00:24:8c:46:5e:44
inet addr:192.168.9.8 Bcast:192.168.9.255 Mask:255.255.255.0
inet6 addr: fd00::f4f4:60a0:d390:2fa7/64 Scope:Global
inet6 addr: fd00::224:8cff:fe46:5e44/64 Scope:Global
inet6 addr: fd00::bce2:7eb6:daf0:2350/64 Scope:Global
inet6 addr: fe80::224:8cff:fe46:5e44/64 Scope:Link
UP BROADCAST RUNNING PROMISC MULTICAST MTU:1500 Metric:1
RX packets:333943 errors:0 dropped:0 overruns:0 frame:0
TX packets:231682 errors:0 dropped:0 overruns:0 carrier:2
collisions:0 txqueuelen:1000
RX bytes:31562789 (31.5 MB) TX bytes:25080447 (25.0 MB)

lo Link encap:Local Loopback
inet addr:127.0.0.1 Mask:255.0.0.0
inet6 addr: ::1/128 Scope:Host
UP LOOPBACK RUNNING MTU:65536 Metric:1
RX packets:30890 errors:0 dropped:0 overruns:0 frame:0
TX packets:30890 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:3491729 (3.4 MB) TX bytes:3491729 (3.4 MB)

tun0 Link encap:UNSPEC HWaddr 00-00-00-00-00-00-00-00-00-00-00-00-00-00-00-00
inet addr:10.72.117.1 P-t-P:10.72.117.2 Mask:255.255.255.255
UP POINTOPOINT RUNNING NOARP MULTICAST MTU:1500 Metric:1
RX packets:0 errors:0 dropped:0 overruns:0 frame:0
TX packets:0 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:100
RX bytes:0 (0.0 B) TX bytes:0 (0.0 B)

wlan0 Link encap:Ethernet HWaddr 00:22:43:64:21:07
UP BROADCAST MULTICAST MTU:1500 Metric:1
RX packets:0 errors:0 dropped:0 overruns:0 frame:0
TX packets:0 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:0 (0.0 B) TX bytes:0 (0.0 B)

3. The result of "uname –a" (UNIX) or "systeminfo" (Windows)

Linux EeePC 3.13.0-40-generic #69+7.0trisquel2 SMP Wed Nov 26 10:01:35 UTC 2014 i686 i686 i686 GNU/Linux

4. The build number of SoftEther VPN

Version 4.12 Build 9514 (English)

5. Which SoftEther VPN component are you using?

L2TP over IPsec

6. Whether or not there is a NAT or Firewall between your VPN server and the Internet.
(If there is a NAT or Firewall, you should open a TCP port for the VPN listener.)

There's a NAT and I have the following ports set up as Listeners in the Windows GUI:

TCP 992, 1194, 5555

I have those TCP ports forwarded in the DSL modem / router, and also these UDP ports:

500 UDP
4500 UDP
1194 UDP

7. Are you using SecureNAT?

No

8. Your current vpn_server.config or vpn_bridge.config file should be attached on the post.

Attached.

Thank you!

- Michael

[dajhorn]

The L2TP client bundled with Android does not work through NAT'd or PPP'd connections.

Enable OpenVPN in the SoftEther server configuration and use the OpenVPN client instead.

[msiep]

Thank you! I've now got SoftEther working with my Android devices via OpenVPN.

I'd still like to get the SoftEther VPN working for my iOS devices if possible, and it's still saying it can't reach the server.

(One possible source of previous problems was that I had openvpn installed and running, having misunderstood the term "clone" to suggest I was supposed to leave it there. I've now done "apt-get remove openvpn" however.)

[thisjun]

Do you use OpenVPN in iOS?

[msiep]

I didn't see OpenVPN as an option in the iOS VPN settings, but your question prompted me to search for an OpenVPN app, which I found. I'll try it. Thanks!

[msiep]

Thanks again dajhorn and thisjun for your help! I've now got it working with OpenVPN everywhere I want to: Ubuntu, Android, and iOS.