SmallNetBuilder Forums
Go Back   SmallNetBuilder Forums > Wireless Networking > ASUS Wireless > Asuswrt-Merlin

Reply
 
Thread Tools Search this Thread Display Modes
  #1  
Old 01-09-2013, 06:36 AM
davewolfs davewolfs is offline
New Member
 
Join Date: Jan 2013
Posts: 24
Thanks: 0
Thanked 0 Times in 0 Posts
davewolfs is just starting out
Default Feature Request - IPSec/L2TP VPN Support

Hello all,

OpenVPN works great but unfortunately it cannot be used on IOS devices. With that said, IOS devices can only use PPTP with the Asus router (as far as I know). Would it be possible to roll in VPN servers which support the IPSec/L2TP protocols?

Thanks!
Reply With Quote
  #2  
Old 01-09-2013, 10:04 AM
RMerlin's Avatar
RMerlin RMerlin is offline
Very Senior Member
 
Join Date: Apr 2012
Location: Canada
Posts: 9,550
Thanks: 47
Thanked 5,090 Times in 2,156 Posts
RMerlin is just starting out
Default

Quote:
Originally Posted by davewolfs View Post
Hello all,

OpenVPN works great but unfortunately it cannot be used on IOS devices. With that said, IOS devices can only use PPTP with the Asus router (as far as I know). Would it be possible to roll in VPN servers which support the IPSec/L2TP protocols?

Thanks!
No plan to.

You can probably manually install and configure IPSEC through Optware/Entware however.
__________________
Asuswrt-Merlin: Customized firmware for Asus routers
Github: github.com/RMerl - Twitter: RMerlinDev
See the sticky post for more info.
Reply With Quote
  #3  
Old 01-09-2013, 11:33 AM
davewolfs davewolfs is offline
New Member
 
Join Date: Jan 2013
Posts: 24
Thanks: 0
Thanked 0 Times in 0 Posts
davewolfs is just starting out
Default

Quote:
Originally Posted by RMerlin View Post
No plan to.

You can probably manually install and configure IPSEC through Optware/Entware however.
Any tutorials on how to do this?
Reply With Quote
  #4  
Old 01-09-2013, 01:03 PM
RMerlin's Avatar
RMerlin RMerlin is offline
Very Senior Member
 
Join Date: Apr 2012
Location: Canada
Posts: 9,550
Thanks: 47
Thanked 5,090 Times in 2,156 Posts
RMerlin is just starting out
Default

Quote:
Originally Posted by davewolfs View Post
Any tutorials on how to do this?
Not that I know of. Do a search for Optware and IPSec, see what comes up. I only know that one user posted months ago on the Asus forums that he was able to get it to work.
__________________
Asuswrt-Merlin: Customized firmware for Asus routers
Github: github.com/RMerl - Twitter: RMerlinDev
See the sticky post for more info.
Reply With Quote
  #5  
Old 01-09-2013, 03:59 PM
davewolfs davewolfs is offline
New Member
 
Join Date: Jan 2013
Posts: 24
Thanks: 0
Thanked 0 Times in 0 Posts
davewolfs is just starting out
Default

What thread are you referring to?

Is it this one.

http://vip.asus.com/forum/view.aspx?...Language=en-us

If so, isn't passthrough different than what I am referring to?
Reply With Quote
  #6  
Old 01-09-2013, 07:47 PM
RMerlin's Avatar
RMerlin RMerlin is offline
Very Senior Member
 
Join Date: Apr 2012
Location: Canada
Posts: 9,550
Thanks: 47
Thanked 5,090 Times in 2,156 Posts
RMerlin is just starting out
Default

Quote:
Originally Posted by davewolfs View Post
What thread are you referring to?

Is it this one.

http://vip.asus.com/forum/view.aspx?...Language=en-us

If so, isn't passthrough different than what I am referring to?
I can't remember where it was discussed since that was back last spring. Look for a thread that talks about StrongSwan, however the person didn't mention how he configured it, only that he was able to make it work.
__________________
Asuswrt-Merlin: Customized firmware for Asus routers
Github: github.com/RMerl - Twitter: RMerlinDev
See the sticky post for more info.
Reply With Quote
  #7  
Old 01-10-2013, 12:53 AM
ryzhov_al's Avatar
ryzhov_al ryzhov_al is offline
Very Senior Member
 
Join Date: Jul 2012
Location: Smolensk, Russia
Posts: 364
Thanks: 36
Thanked 252 Times in 130 Posts
ryzhov_al is just starting out
Default

Quote:
Originally Posted by RMerlin View Post
I can't remember where it was discussed since that was back last spring. Look for a thread that talks about StrongSwan, however the person didn't mention how he configured it, only that he was able to make it work.
Here, but some kernel modules is needed.
__________________
The Entware. A modern Optware replacement.
Reply With Quote
  #8  
Old 01-10-2013, 08:03 AM
davewolfs davewolfs is offline
New Member
 
Join Date: Jan 2013
Posts: 24
Thanks: 0
Thanked 0 Times in 0 Posts
davewolfs is just starting out
Default

Quote:
Originally Posted by ryzhov_al View Post
Here, but some kernel modules is needed.
Any chance of putting together something that shows how to get this setup? I'm surprised that there isn't more info on this. Is there a reason why people aren't commonly setting up IPSec?
Reply With Quote
  #9  
Old 01-10-2013, 08:23 AM
Tartarus Tartarus is offline
New Member
 
Join Date: Oct 2012
Posts: 8
Thanks: 0
Thanked 1 Time in 1 Post
Tartarus is just starting out
Default

Quote:
Originally Posted by davewolfs View Post
Any chance of putting together something that shows how to get this setup? I'm surprised that there isn't more info on this. Is there a reason why people aren't commonly setting up IPSec?
I guess it is because IPSEC is often a pain to get working. It did not work well with NAT until the NAT-T standard emerged since it requires IP protocol 50 to be passed between the gateways. Second, it's often hard to set up due to very basic tools and a complicated protocol (getting two gateways to authenticate towards each other is no guarantee that you can route trafic between subnets across the IPSEC tunnel).

I have connected numerous networks via IPSEC tunnels in the past 10 years, and for that purpose it works well. For roaming users wishing to connect back to their home network it's a pain and rarely works well. I was thrilled when OpenVPN emerged as an alternative for that kind of setup
Reply With Quote
Reply

Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off


All times are GMT -4. The time now is 05:39 PM.


Top 10 Stats
Top Posters* Top Thanked
RMerlin  345
sm00thpapa  229
stevech  188
azazel1024  155
KGB7  139
jim769  85
htismaqe  82
philmiami  80
AcostaJA  69
ColinTaylor  59
RMerlin  5089
stevech  315
ryzhov_al  252
TeHashX  209
RogerSC  187
L&LD  186
joegreat  123
jlake  122
sinshiva  111
sfx2000  111
Most Viewed Threads* Hottest Threads*
Old ASUS RT-N66U...  24027
Old NETGEAR...  13080
Old Switched...  7757
Old 3.0.0.4.376.1...  6771
Old NEW RT-AC68R...  6721
Old ASUS...  6096
Old ASUS RTAC68U...  3548
Old Netgear...  3342
Old ASUS...  3253
Old N66U daily...  2866
Old ASUS RT-N66U...  169
Old NETGEAR...  161
Old Switched...  66
Old NEW RT-AC68R...  56
Old ASUS...  51
Old N66U daily...  47
Old Netgear...  41
Old Which router...  41
Old ASUS RTAC68U...  41
Old ASUS...  38


Powered by vBulletin® Version 3.7.3
Copyright ©2000 - 2014, Jelsoft Enterprises Ltd.
© 2006-2014 Pudai LLC All Rights Reserved.