#opkg update
#opkg install strongswan-full xl2tpd
install for module ipsec, if you not using ipsec skip this:
#opkg install kmod-crypto-aes kmod-crypto-sha1 kmod-ipsec
config xl2tpd:
#vi /etc/xl2tpd/xl2tpd.conf
[global]
port = 1701
[lac mikrotik]
lns = IP_MIKROTIK
pppoptfile = /etc/ppp/options.l2tp
length bit = yes
#vi /etc/ppp/options.l2tp
name openwrt
password 123456
refuse-eap
require-chap
noccp
noauth
mtu 1460
mru 1460
persist
defaultroute
usepeerdns
open your l2tp port on your openwrt
uci add firewall rule
uci set firewall.@rule[-1].name=’L2TP’
uci set firewall.@rule[-1].src=’wan’
uci set firewall.@rule[-1].proto=’udp’
uci set firewall.@rule[-1].dest_port=’1701′
uci set firewall.@rule[-1].target=’ACCEPT’
#uci commit firewall
#/etc/init.d/firewall restart
start vpn
#/etc/init.d/xl2tpd restart
dial :
#echo “c mikrotik” > /var/run/xl2tpd/l2tp-control
check :
#ifconfig ppp0
#logread | grep xl2tp
have trying
Leave a Reply