Template:Networking rutos configuration example l2tp over ipsec android: Difference between revisions
m (Protected "Template:Networking rutos configuration example l2tp over ipsec android" ([Edit=Allow only administrators] (indefinite) [Move=Allow only administrators] (indefinite))) |
|||
Line 23: | Line 23: | ||
The topology above depicts the L2TP/IPsec scheme. - The router with the Public IP address ('''''RUTX11''''') acts as the '''L2TP/IPsec server''' and the '''Android device''' acts as '''client'''. L2TP connects the networks of '''RUTX11''' and '''Android client''', IPsec provides the encryption for the L2TP tunnel. Created VPN tunnel will allow Android device to reach home network behind the RUTX11 router, but the rest of Android device network traffic will not be redirected through VPN. This way the VPN tunnel will not be under a huge load and will provide greater speeds. | The topology above depicts the L2TP/IPsec scheme. - The router with the Public IP address ('''''RUTX11''''') acts as the '''L2TP/IPsec server''' and the '''Android device''' acts as '''client'''. L2TP connects the networks of '''RUTX11''' and '''Android client''', IPsec provides the encryption for the L2TP tunnel. Created VPN tunnel will allow Android device to reach home network behind the RUTX11 router, but the rest of Android device network traffic will not be redirected through VPN. This way the VPN tunnel will not be under a huge load and will provide greater speeds. | ||
When the scheme is realized, you will be able to reach your home internal network with all internal systems, cameras, or other | When the scheme is realized, you will be able to reach your home internal network with all internal systems, cameras, or other IoT devices. | ||
==Configuring home router (RUTX)== | ==Configuring home router (RUTX)== |
Revision as of 13:54, 9 June 2020
|
Configuration overview and prerequisites
Prerequisites:
- One RUTX router of any type
- A Public Static or Public Dynamic IP address
- At least one Android device
The topology above depicts the L2TP/IPsec scheme. - The router with the Public IP address (RUTX11) acts as the L2TP/IPsec server and the Android device acts as client. L2TP connects the networks of RUTX11 and Android client, IPsec provides the encryption for the L2TP tunnel. Created VPN tunnel will allow Android device to reach home network behind the RUTX11 router, but the rest of Android device network traffic will not be redirected through VPN. This way the VPN tunnel will not be under a huge load and will provide greater speeds.
When the scheme is realized, you will be able to reach your home internal network with all internal systems, cameras, or other IoT devices.
Configuring home router (RUTX)
L2TP
Login to the router's WebUI and navigate to the Services → VPN → L2TP page and do the following:
|
|
IPsec
Go to the Services → VPN → IPsec page and do the following:
|
In the IPsec Configuration page, do the following (and leave the rest as defaults, unless your specific configuration requires otherwise):
|
Firewall
Now go to the Network → Firewall → General Settings page and press Edit button next to the L2TP forward rule: |
|
Android phone
Go to your Android device VPN settings and create a new VPN network: |
Apply the following configuration:
|
|
Now open your newly created VPN instance and connect to it:
|
If you applied the configuration correctly, after a moment it should indicate Connected: |
Results
Now you should be able to access your home network resources. To verify the connection you can try accessing your router's WebUI without being connected to it in any way. If you are able to do that, you have successfully connected to your home network. |
Disclaimer:
This configuration example was created by using Android version 10. The IPsec Phase 1 and Phase 2 settings, which were used in this configuration example, might not work with other Android versions and might require adjustment.