access VPN from the same intranet

soldier89757 · Aug 27, 2018

I've built a XL2TP+IPSEC VPN server on a vps. I've found that my VPN server will become unstable if there are 3 clients in a intranet accessing the VPN server at the same time.When this phenomenon happen，clients can not connect to the server or unable to access the internet even if succeeding connecting to the server. Can someone tell me how to solve the problem？

Alabalcho · Aug 27, 2018

You have to find out whether this is something happening at your router (and behind), or at your VPN server (if I understand you correctly, it is on VPS, hosted outside your home network).

bill001g · Aug 27, 2018

It has been a while since i ran multiple ipsec sessions. I know there were issues when multiple machines where connecting to the same location when they were behind the same nat.

It is some restriction with how NAT-T works....sorry its been a long time I forget what can be done to resolve this.

soldier89757 · Aug 31, 2018

bill001g :

NAT-T?? is it a setting option in ipsec configure file?

soldier89757 · Aug 31, 2018

Alabalcho :

Yes,the VPS is outside.I'm using ios and windows built-in client and I never set up client's router manually,so I think that the fault probably consists in the server.However, since you think that a bad router may cause this problem,could you tell me in detail.

bill001g · Aug 31, 2018

NAT-T is the work around they came up with for ipsec to pass through a router running nat. IPSEC running in the most secure mode will not allow something in the path to manipulate the port numbers which prevents the session from even establishing.

If you search nat-t and multiple machine you will see lots of discussion of this issue. Most times people just give up and use sslvpn which tolerates nat much better

soldier89757 · Aug 31, 2018

bill001g :

what path？I've just known that NAT-T means IPSEC NAT Traversal protocol but I don't know what "path" means. Could you explain it.

Search

access VPN from the same intranet

soldier89757

Alabalcho

Titan

bill001g

Titan

soldier89757

soldier89757

bill001g

Titan

soldier89757

TRENDING THREADS

Latest posts

Moderators online

Share this page