Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.


ForumsLAN (ethernet/Wifi/routers/Bluetooth)L2TP VPN issues
wratterus

1687 posts

Uber Geek


#281013 25-Jan-2021 11:54
Send private message

Got an odd issue at a client's location. They are on 2Degrees Fibre, were using a ER-Lite, now are using a USG, (issues are identical between the routers) and have issues where some users can not connect to their L2TP VPN from offsite. 

 

This is just the bog standard L2TP with PSK setup using the UniFi controller. 

 

I have never been able to fault it, coming from either Spark or 2Degrees, even hotspotting from a phone on Spark. They seem to have a lot of issues connecting to it from a vodafone mobile hotspot, and a few of their employees simply can't connect from home at all, bring the machine in question here (on 2Degrees) and it works perfectly. 

 

Any ideas what might be going on here?

 

 

 

 

Create new topic
lxsw20
3530 posts

Uber Geek

Subscriber

  #2641597 25-Jan-2021 12:06
Send private message

Does it just not connect at all, or can they not access things on the VPN? Is the VPN subnet overlapping with their home subnet if the latter?

 
 
 
 

Shop now on AliExpress (affiliate link).
wratterus

1687 posts

Uber Geek


  #2641605 25-Jan-2021 12:26
Send private message

Won't connect at all. Get various messages like no response from server, or misc other errors - seems quite random. I can always connect without issue from another 2Degrees connection. We use static routes in this case, it's essentially just for RDP so we just lock it down to a single IP. 

MadEngineer
4240 posts

Uber Geek

Trusted

  #2641681 25-Jan-2021 13:51
Send private message

Vodafone were the first to rightly block PPTP many moons ago. You're not using the same ports?

 

 

 

Is this what you've set up?

 

UniFi - USG/UDM: Configuring L2TP Remote Access VPN – Ubiquiti Support and Help Center




You're not on Atlantis anymore, Duncan Idaho.



wratterus

1687 posts

Uber Geek


  #2641714 25-Jan-2021 15:38
Send private message

Yeah that's right - is that no good any more?

freitasm
BDFL - Memuneh
79135 posts

Uber Geek

Administrator
ID Verified
Trusted
Geekzone
Lifetime subscriber

  #2641724 25-Jan-2021 15:59
Send private message

Is your client using a static IP or is it behind the 2degrees CGNAT?




Please support Geekzone by subscribing, or using one of our referral links: Samsung | AliExpress | Wise | Sharesies | Hatch | GoodSyncBackblaze backup

wratterus

1687 posts

Uber Geek


  #2641726 25-Jan-2021 16:02
Send private message

The location where the router (VPN server) is located has a 2Degrees business Fibre connection with a static IP. Client ends - is a mix, one client in particular who seems to be unable to connect almost all the time is on Orcon copper. 

richms
28045 posts

Uber Geek

Trusted
Lifetime subscriber

  #2643046 27-Jan-2021 13:32
Send private message

Outgoing routers seem to be the problem I find, seems to be some state held on them that takes time to timeout after a failure to connect before it will work again, constantly hammering the connect button makes it fail. Change router at the other end and problems go away. Sucks when you have to use the ISP supplied one to keep the oldperson phone service working but what can you do other than change to openvpn which seems to not have random nat problems on some routers.




Richard rich.ms



nztim
3750 posts

Uber Geek

ID Verified
Trusted
TEAMnetwork
Subscriber

  #2643051 27-Jan-2021 13:37
Send private message

CG-NAT at the client side can break this as some cant pass GRE properly




Any views expressed on these forums are my own and don't necessarily reflect those of my employer. 

wratterus

1687 posts

Uber Geek


  #2643064 27-Jan-2021 14:11
Send private message

Thanks for all the thoughts guys. Is rather annoying really - from a setup simplicity & management point of view, the built in L2TP VPN is just so easy to work with. 

 

 

 

 

Create new topic





News and reviews »

Māori Artists Launch Design Collection with Cricut ahead of Matariki Day
Posted 15-Jun-2025 11:19

LG Launches Upgraded webOS Hub With Advanced AI
Posted 15-Jun-2025 11:13

One NZ Satellite IoT goes live for customers
Posted 15-Jun-2025 11:10

Bolt Launches in New Zealand
Posted 11-Jun-2025 00:00

Suunto Run Review
Posted 10-Jun-2025 10:44

Freeview Satellite TV Brings HD Viewing to More New Zealanders
Posted 5-Jun-2025 11:50

HP OmniBook Ultra Flip 14-inch Review
Posted 3-Jun-2025 14:40

Flip Phones Are Back as HMD Reimagines an Iconic Style
Posted 30-May-2025 17:06

Hundreds of School Students Receive Laptops Through Spark Partnership With Quadrent's Green Lease
Posted 30-May-2025 16:57

AI Report Reveals Trust Is Key to Unlocking Its Potential in Aotearoa
Posted 30-May-2025 16:55

Galaxy Tab S10 FE Series Brings Intelligent Experiences to the Forefront with Premium, Versatile Design
Posted 30-May-2025 16:14

New OPPO Watch X2 Launches in New Zealand
Posted 29-May-2025 16:08

Synology Premiers a New Lineup of Advanced Data Management Solutions
Posted 29-May-2025 16:04

Dyson Launches Its Slimmest Vaccum Cleaner PencilVac
Posted 29-May-2025 15:50

OPPO Reno13 Pro 5G Review 
Posted 29-May-2025 15:33








Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.


Updates »

Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.







Backblaze unlimited backup



RSS feeds
Main feed
Forums feed
Copyright
©2002-2025 Geekzone®
Site features
Geekzone BI dashboard
Geekzone Badges
Geekzone Status Page

 

Affiliate links
Samsung
AliExpress
Wise
Sharesies
Hatch
GoodSync
Backblaze backup
Site Information
Subscribe to Geekzone
Privacy Statement
Forum Usage Guidelines (FUG)
Advertising
Trademark and copyright