How are the IP addresses at the end siginificant. That is the part I can't wrap my head around with tunnels. I get the it will assign IPs to the endpoints on the tunnel but are they just arbitrary, non-routable addresses? Is the iPhone in this case going to find itself attached to this router but with a 192.168.255.254 address? Do you then need to src.nat your way out into the world beyond?
-Ty On Wed, Aug 22, 2012 at 8:39 AM, Sim <[email protected]> wrote: > Hi, this is that you need :-) > > # Server & Preshared (1234567abcdef) config > /interface l2tp-server server set enabled=yes > > /ip ipsec proposal > set [ find default=yes ] auth-algorithms=sha1 disabled=no > enc-algorithms=3des,aes-256 \ > lifetime=30m name=default pfs-group=modp1024 > > /ip ipsec peer add address=0.0.0.0/0 auth-method=pre-shared-key > dh-group=modp1024 disabled=no \ > dpd-interval=2m dpd-maximum-failures=5 enc-algorithm=3des > exchange-mode=main-l2tp generate-policy=yes \ > hash-algorithm=sha1 lifetime=1d my-id-user-fqdn="" nat-traversal=yes > port=500 secret=1234567abcdef send-initial-contact=yes > > # ADD Client (change user, psw, ips) > /ppp secret add name=user password=12345 profile=default-encryption > local-address=192.168.255.10 remote-address=192.168.255.254 > service=l2tp > > > # Debug > /system logging add action=memory topics=l2tp > /system logging add action=memory topics=ipsec > > > Regards > > > 2012/8/22 Meftah Tayeb <[email protected]>: > > hello folks > > i'm traveling these days and i'lle love to be in my home network > > i have a iPhone4S > > i want to do IPSec or L2TP (no pptp) into my rb493G > > any idea please? > > IPSec look very complicated... no OpenVPN in iOs. no Jailbreack. > > thank you > > Meftah Tayeb > > IT Consulting > > http://www.tmvoip.com/ phone: +21321656139 > > Mobile: +213660347746 > > > > __________ Information from ESET NOD32 Antivirus, version of virus > signature > > database 7404 (20120821) __________ > > > > The message was checked by ESET NOD32 Antivirus. > > > > http://www.eset.com > > > > > > > > _______________________________________________ > > Mikrotik mailing list > > [email protected] > > http://www.butchevans.com/mailman/listinfo/mikrotik > > > > Visit http://blog.butchevans.com/ for tutorials related to Mikrotik > RouterOS > _______________________________________________ > Mikrotik mailing list > [email protected] > http://www.butchevans.com/mailman/listinfo/mikrotik > > Visit http://blog.butchevans.com/ for tutorials related to Mikrotik > RouterOS > -------------- next part -------------- An HTML attachment was scrubbed... URL: <http://www.butchevans.com/pipermail/mikrotik/attachments/20120822/cf027b6d/attachment.html> _______________________________________________ Mikrotik mailing list [email protected] http://www.butchevans.com/mailman/listinfo/mikrotik Visit http://blog.butchevans.com/ for tutorials related to Mikrotik RouterOS
