On 2017-11-23, Denis <[email protected]> wrote: > Hi All, > > I have a goal to make an IPsec connection to an external L2TP IPsec with > mschap-v2 (preshared key auth) server. > OpenBSD 6.1amd64 will play client role in this case. > > Would you recommended suitable way to make such VPN connection? > > Can it be realized using iked?
No. IPsec+L2TP uses IKEv1, iked uses IKEv2. > Any recommendations or examples will be helpful. > > Thank you for answer in advance. It's not as nice or reliable as normal OpenBSD IPsec, but landry@ got this to work. Install xl2tpd (take the version from -current ports, it has a hack which avoids some problems seen with "large" packets) and look at the README.
