the next issue you will hit (after VPN is connected) is: - if you route all traffic over the remote gateway - your internet will stop working, but you will be able to access all your VMs - if you untick that option, then NO traffic is routed over the VPN - so you need to manually add routes for the remote network/VPC CIDR to be routed over your VPN gtw IP
Best, On Wed, 26 May 2021 at 14:33, Brian Fitzpatrick <b.fitzpatr...@chester.ac.uk> wrote: > Thanks Andrija, > > I will look through the setup again, I think the default iprange is on a > separate network > > Thanks > > Brian > > -----Original Message----- > From: Andrija Panic <andrija.pa...@gmail.com<mailto: > andrija%20panic%20%3candrija.pa...@gmail.com%3e>> > Reply-To: users@cloudstack.apache.org<mailto:users@cloudstack.apache.org> > To: users <users@cloudstack.apache.org<mailto: > users%20%3cus...@cloudstack.apache.org%3e>> > Subject: Re: Remote Access VPN > Date: Tue, 25 May 2021 23:30:46 +0200 > > > CAUTION ! > > > This email originated outside of the University of Chester. Do not click > links or open attachments unless you recognise the sender and know the > content is safe. > > > ===== > > > > Another thing to keep in mind - if you work from office - usually there can > > be only 1 IPSEC with L2TP connection from your office to outside/same IP - > > i.e. you and your colleague can not connect at the same time to the same > > public IP (i.e. to the same Remove VPN). > > > > On Tue, 25 May 2021 at 23:29, Andrija Panic < > > <mailto:andrija.pa...@gmail.com> > > andrija.pa...@gmail.com > > > wrote: > > > Hi Brian, > > > remote.access.vpn.client.iprange should be set to some subnet OUTSIDE > > your local network (where your laptop/PC is connected to / home/office) and > > the Isolated network - so it should be "3rd" network. > > > For Windows, you there was a nice link somewhere...: here is one for > > windows 8 - but same/identical is applicable for Windows 10: > > < > https://eur02.safelinks.protection.outlook.com/?url=https%3A%2F%2Ftheresnomon.co%2Fconnecting-to-cloudstack-vpn-from-windows-8-8807b41af700&data=04%7C01%7Cb.fitzpatrick%40chester.ac.uk%7C363792b0184d4afe72df08d91fc46e91%7C18843e6e1846456ca05c500f0aee12f6%7C0%7C0%7C637575750798430384%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000&sdata=v3RTii5lx4lS%2B%2FTXNYkht9BN%2FNUWRPyyjxxXoffU8HQ%3D&reserved=0 > > > > > https://eur02.safelinks.protection.outlook.com/?url=https%3A%2F%2Ftheresnomon.co%2Fconnecting-to-cloudstack-vpn-from-windows-8-8807b41af700&data=04%7C01%7Cb.fitzpatrick%40chester.ac.uk%7C363792b0184d4afe72df08d91fc46e91%7C18843e6e1846456ca05c500f0aee12f6%7C0%7C0%7C637575750798430384%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000&sdata=v3RTii5lx4lS%2B%2FTXNYkht9BN%2FNUWRPyyjxxXoffU8HQ%3D&reserved=0 > > > > Hope that helps > > > Best, > > > On Tue, 25 May 2021 at 22:34, Brian Fitzpatrick < > > <mailto:b.fitzpatr...@chester.ac.uk> > > b.fitzpatr...@chester.ac.uk > > > wrote: > > > **Apologies not sure this was originally posted** > > > Hi all, > > > I am trying to setup Remote Access VPN on an DefaultIsolatedSourceNAT > > network > > > I have created the VPN and a VPN user and pasted the shared key into a > > Windows client but I am getting an error stating > > > the L2TP connection attempt failed because the security layer encountered > > a processing error > > > I have looked through the documentation and have set > > > Requires encryption > > MS-CHAP v2 > > PPP -> Enable LCP extensions > > > I haven't however changed the CloudStack parameter > > > remote.access.vpn.client.iprange setting from it's default, does this > > need to be altered to match guest isolated network CIDR's? Not sure how the > > virtual router sets up the VPN > > > Or am I doing something else wrong? > > > Thanks > > > Brian > > > > > -- > > > Andrija Panić > > > > > -- > > > Andrija Panić > -- Andrija Panić
