Quoting YASUOKA Masahiko <[email protected]>:
You can change the listen address by npppd.conf:
tunnel L2TP protocol l2tp {
listen on xxx.xxx.xxx.xxx
}
So npppd.conf(5) is not accurate (states that changing listener
address is not currently supported):
--
BUGS
The current version of npppd(8) does not support adding or removing
tunnel settings or changing listener settings (listen address, port and
l2tp-ipsec-require).
--
l2tp-ipsec-require isn't supported yet, but we can refuse L2TP without
IPsec packerts by pf.
So, would this be the best way to do it, then, assuming a default block rule:
pass in quick on enc0 proto udp from any to any port 1701 keep state
Thanks,
Mike
