So the object here was to make Centos servers connect via L2TP to a Mikrotik LAC in order to provide connectivity with private ip’s.<\/p>\n
This example will build a persistent L2TP tunnel which will auto reconnect and try to remain persistent.<\/p>\n
I used standard ppp profile in this example.<\/p>\n
\/ppp profile\r\nset default change-tcp-mss=yes comment=\"\" name=default only-one=default \\\r\nuse-compression=default use-encryption=default use-vj-compression=default<\/pre>\nConfigured a secret in Mikrotik:<\/p>\n
\/ppp secret\r\nadd caller-id=\"\" disabled=no limit-bytes-in=0 limit-bytes-out=0 local-address=10.0.0.1 name=MyUserName password=MyPassword profile=default \\\r\nremote-address=10.0.0.254 routes=\"\" service=l2tp<\/pre>\nOn Mikrotik L2TP Server:<\/h6>\n
Install xl2tp from EPEL repo<\/p>\n
yum install xl2tpd<\/pre>\nChange \/etc\/xl2tpd\/xl2tpd.conf<\/p>\n
; This is a minimal sample xl2tpd configuration file for use as L2TP client.\r\n;\r\n[global]\r\ndebug tunnel = yes\r\n\r\n[lac vpnserver]\r\nlns = yourserverip\r\nppp debug = yes\r\npppoptfile = \/etc\/ppp\/options.xl2tpd.client\r\nlength bit = yes\r\nredial = yes\r\nredial timeout = 2\r\nautodial = yes<\/pre>\ncreate or edit if exists \/etc\/ppp\/options.xl2tpd.client<\/p>\n
ipcp-accept-local\r\nipcp-accept-remote\r\nrefuse-eap\r\nrequire-mschap-v2\r\nnoccp\r\nnoauth\r\nidle 1800\r\nmtu 1410\r\nmru 1410\r\nnodefaultroute\r\ndebug\r\nlock\r\nconnect-delay 5000\r\nname MyUserName\r\npassword MyPassword\r\npersist\r\nmaxfail 0<\/pre>\nCreate file: \/etc\/ppp\/ip-up.local and remember to chmod +x ….<\/p>\n
#!\/bin\/sh\r\n# Where 10.0.0.1 is the Tunnel endpoint IP defined on Mikrotik or Linux LAC \r\ncase in\r\n 10.0.0.1)\r\n # VPN - IP ROUTE BEING ADDED AT RECONNECTION\r\n route add -net 10.0.0.0\/24 gw 10.0.0.1;\r\n ;;\r\nesac<\/pre>\nNow start xl2tpd..<\/p>\n
\/etc\/init.d\/xl2tpd start<\/pre>\nResult: ifconfig….<\/p>\n
[root@myserv ~]# ifconfig ppp0\r\nppp0 Link encap:Point-to-Point Protocol\r\n inet addr:10.0.0.254 P-t-P:10.0.0.1 Mask:255.255.255.255\r\n UP POINTOPOINT RUNNING NOARP MULTICAST MTU:1410 Metric:1\r\n RX packets:1198 errors:0 dropped:0 overruns:0 frame:0\r\n TX packets:1260 errors:0 dropped:0 overruns:0 carrier:0\r\n collisions:0 txqueuelen:3\r\n RX bytes:156001 (152.3 KiB) TX bytes:1144669 (1.0 MiB)<\/pre>\n<\/p>\n
A Snippet of the routing table…<\/p>\n
[root@myserv ~]# route -n\r\nKernel IP routing table\r\nDestination Gateway Genmask Flags Metric Ref Use Iface\r\n10.254.255.1 0.0.0.0 255.255.255.255 UH 0 0 0 ppp0\r\n10.254.255.0 10.254.255.1 255.255.255.0 UG 0 0 0 ppp0<\/pre>\n","protected":false},"excerpt":{"rendered":"The mission: So the object here was to make Centos servers connect via L2TP to a Mikrotik LAC in order to provide connectivity with private ip’s. This example will build a persistent L2TP tunnel which will auto reconnect and try to remain persistent. On Mikrotik L2TP Server: I used standard ppp profile in this example. … Continue reading Centos L2TP Client to Mikrotik L2TP-Server<\/span>