Business Community > Routers > L2TP VPN connection fails in a test environment
< Routers

L2TP VPN connection fails in a test environment

L2TP VPN connection fails in a test environment

L2TP VPN connection fails in a test environment
L2TP VPN connection fails in a test environment
Yesterday
Tags: #VPN
Model: ER605 (TL-R605)  
Hardware Version: V2
Firmware Version: 2.2.6

I could not get a L2TP client to lan configuration to work on my ER605.  I took it out of service and put it in a test environment to troubleshoot it.  I have the following:

 

Local Area network IP range:  192.168.1.0/24

Windows 11 client IP address: 192.168.1.103

ER605 WAN Port Address: 192.168.1.108

ER605 LAN Port Address: 10.35.0.1

ER605 LAN IP range 10.35.0.0/24

Windows 11 client on the ER605 IP Address 10.35.0.101

Both Windows 11 clients can reach the internet.

 

I want to setup a L2TP/IPSEC tunnel such that the Windows client at 192.168.1.103 can RDP to the Windows client at 10.35.0.101.  I have configured the ER605 as follows:

 

VPN IP Pool:

 

L2TP VPN:

 

 

VPN User:

 

On the Windows 11 connecting client I have the L2PT client configured as follows:

 

I have tried every possible combination of authentication protocols in the following screen with no success:

 

 

 

Every time I try to connect I get an immediate error:  "The L2TP connection attempt failed because the security policy for the connection was not found".  In the Event Viewer I see the following error: "CoId={CBEE639E-5C4F-0003-EA3D-24CC4F5CDB01}: The user HOME\jheimann dialed a connection named Test which has failed. The error code returned on failure is 791."

 

I cannot get this to work.  What am I doing wrong?  Any help would be greatly appreciated.

 

Thanks,

 

 

Testing John

 

 

  0      
 
  0      
 
#1
Options
4 Reply
Re:L2TP VPN connection fails in a test environment
Yesterday
On the connecting client I verified the following services were running: IKE and AuthIP IPsec Keying Modules IPsec Policy Agent Remote Access Auto Connection Manager Remote Access Connection Manager I made the following changes to the registry on the connecting client: In HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\RasMan\Parameters I changed AllowL2TPWeakCrypto from 0 to 1 and added ProhibitIpSec = 0 In HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\PolicyAgent I added AssumeUDPEncapsulationContextOnSendRule = 2 None of this made any difference. I still get the same error message and a 791 error in the event viewer :(
  0  
  0  
#2
Options
Re:L2TP VPN connection fails in a test environment
Yesterday

Hi @TestingJohn 

Thanks for posting in our business forum.

I think you could use the configuration guide again. The error now is that the LAN and WAN conflicts.

Best Regards! If you are new to the forum, please read: Howto - A Guide to Use Forum Effectively. Read Before You Post. Look for a model? Search your model NOW Official and Beta firmware. NEW features! Subscribe for the latest update!Download Beta Here☚ ☛ ★ Configuration Guide ★ ☚ ☛ ★ Knowledge Base ★ ☚ ☛ ★ Troubleshooting ★ ☚ ● Be kind and nice. ● Stay on the topic. ● Post details. ● Search first. ● Please don't take it for granted. ● No email confidentiality should be violated. ● S/N, MAC, and your true public IP should be mosaiced.
  0  
  0  
#3
Options
Re:L2TP VPN connection fails in a test environment
Yesterday

  @Clive_A 

 

The WAN address is 192.168.1.108 and the LAN address is 10.35.0.1.  There is no conflict between the WAN and LAN address on the router.  My connecting Windows client is on the same subnet as the routers WAN port so there is no routing or NATing going on outside of the router itself.  The client Inam trying to connect to (through the VPN) is 10.35.0.101.

 

i believe I configured everything according to the guide, but I am sure I missed something since it doesn't work.

 

any help or guidance would be appreciated.

 

thanks,

 

Testing John

  0  
  0  
#4
Options
Re:L2TP VPN connection fails in a test environment
18 hours ago - last edited 18 hours ago

Hi @TestingJohn 

Thanks for posting in our business forum.

TestingJohn wrote

  @Clive_A 

 

The WAN address is 192.168.1.108 and the LAN address is 10.35.0.1.  There is no conflict between the WAN and LAN address on the router.  My connecting Windows client is on the same subnet as the routers WAN port so there is no routing or NATing going on outside of the router itself.  The client Inam trying to connect to (through the VPN) is 10.35.0.101.

 

i believe I configured everything according to the guide, but I am sure I missed something since it doesn't work.

 

any help or guidance would be appreciated.

 

thanks,

 

Testing John

That's WAN subnet/CIDR.

But why is the client on 192.168.1.0/24?

 

Best Regards! If you are new to the forum, please read: Howto - A Guide to Use Forum Effectively. Read Before You Post. Look for a model? Search your model NOW Official and Beta firmware. NEW features! Subscribe for the latest update!Download Beta Here☚ ☛ ★ Configuration Guide ★ ☚ ☛ ★ Knowledge Base ★ ☚ ☛ ★ Troubleshooting ★ ☚ ● Be kind and nice. ● Stay on the topic. ● Post details. ● Search first. ● Please don't take it for granted. ● No email confidentiality should be violated. ● S/N, MAC, and your true public IP should be mosaiced.
  1  
  1  
#5
Options

Information

Helpful: 0

Views: 75

Replies: 4

Tags

VPN
Related Articles
 L2TP VPN connection when using 4G dongle in
1373 0
L2TP/ipsec VPN connections drop on upload speed tests
1414 0
L2TP LAN-LAN VPN in "Route" Working Mode
434 0
 ER605 as L2TP VPN clien
1074 0
L2TP VPN Connection issue
473 0
 ER605 L2TP VPN is very slow, any advice?
2259 0
About Us
Press
Copyright © TP-Link Systems Inc. All rights reserved.