D-Link Forums

The Graveyard - Products No Longer Supported => D-Link NetDefend Firewalls => Topic started by: imaher on November 09, 2010, 01:52:17 PM

Title: DFL-210 with L2TP VPN
Post by: imaher on November 09, 2010, 01:52:17 PM

I already have a server running vpn l2tp, am trying to create rules under DFL-210 to forward those ports to this server.. but it didn't work, here is what I create "pls let me know if it's wrong":

1) created an interface group for "lan & wan" called "vpn_traffic"
2) created "NAT" Rule:
- Service: l2tp-ipsec
- Source Interface: vpn_traffic
- Network: all-nets
- Destination Interface: vpn_traffic
- Network: all-nets

3) created "SAT" Rule:
- Service: l2tp-ipsec
- Source Interface: any
- Network: all-nets
- Destination Interface: core
- Network: wan_ip


4) created "Allow" Rule:
- Service: l2tp-ipsec
- Source Interface: any
- Network: all-nets
- Destination Interface: core
- Network: wan_ip



Still not working.. any idea ?! ..pls HELP!

Title: Re: DFL-210 with L2TP VPN
Post by: silver_surfer30 on November 16, 2010, 05:48:18 AM

Hi,
The thing is that as DFL is also a L2TP server, all the LT2P traffic is capture by DFL internal engine.
The only way to have it working is to desable the feature "L2TP before rule" inInterfaces -> PPTP/LT2P server then advanced settings.

That should do the trick.