Thanks Andrija, I will look through the setup again, I think the default iprange is on a separate network
Thanks Brian -----Original Message----- From: Andrija Panic <andrija.pa...@gmail.com<mailto:andrija%20panic%20%3candrija.pa...@gmail.com%3e>> Reply-To: users@cloudstack.apache.org<mailto:users@cloudstack.apache.org> To: users <users@cloudstack.apache.org<mailto:users%20%3cus...@cloudstack.apache.org%3e>> Subject: Re: Remote Access VPN Date: Tue, 25 May 2021 23:30:46 +0200 CAUTION ! This email originated outside of the University of Chester. Do not click links or open attachments unless you recognise the sender and know the content is safe. ===== Another thing to keep in mind - if you work from office - usually there can be only 1 IPSEC with L2TP connection from your office to outside/same IP - i.e. you and your colleague can not connect at the same time to the same public IP (i.e. to the same Remove VPN). On Tue, 25 May 2021 at 23:29, Andrija Panic < <mailto:andrija.pa...@gmail.com> andrija.pa...@gmail.com > wrote: Hi Brian, remote.access.vpn.client.iprange should be set to some subnet OUTSIDE your local network (where your laptop/PC is connected to / home/office) and the Isolated network - so it should be "3rd" network. For Windows, you there was a nice link somewhere...: here is one for windows 8 - but same/identical is applicable for Windows 10: <https://eur02.safelinks.protection.outlook.com/?url=https%3A%2F%2Ftheresnomon.co%2Fconnecting-to-cloudstack-vpn-from-windows-8-8807b41af700&data=04%7C01%7Cb.fitzpatrick%40chester.ac.uk%7C363792b0184d4afe72df08d91fc46e91%7C18843e6e1846456ca05c500f0aee12f6%7C0%7C0%7C637575750798430384%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000&sdata=v3RTii5lx4lS%2B%2FTXNYkht9BN%2FNUWRPyyjxxXoffU8HQ%3D&reserved=0> https://eur02.safelinks.protection.outlook.com/?url=https%3A%2F%2Ftheresnomon.co%2Fconnecting-to-cloudstack-vpn-from-windows-8-8807b41af700&data=04%7C01%7Cb.fitzpatrick%40chester.ac.uk%7C363792b0184d4afe72df08d91fc46e91%7C18843e6e1846456ca05c500f0aee12f6%7C0%7C0%7C637575750798430384%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000&sdata=v3RTii5lx4lS%2B%2FTXNYkht9BN%2FNUWRPyyjxxXoffU8HQ%3D&reserved=0 Hope that helps Best, On Tue, 25 May 2021 at 22:34, Brian Fitzpatrick < <mailto:b.fitzpatr...@chester.ac.uk> b.fitzpatr...@chester.ac.uk > wrote: **Apologies not sure this was originally posted** Hi all, I am trying to setup Remote Access VPN on an DefaultIsolatedSourceNAT network I have created the VPN and a VPN user and pasted the shared key into a Windows client but I am getting an error stating the L2TP connection attempt failed because the security layer encountered a processing error I have looked through the documentation and have set Requires encryption MS-CHAP v2 PPP -> Enable LCP extensions I haven't however changed the CloudStack parameter remote.access.vpn.client.iprange setting from it's default, does this need to be altered to match guest isolated network CIDR's? Not sure how the virtual router sets up the VPN Or am I doing something else wrong? Thanks Brian -- Andrija Panić -- Andrija Panić
