Hi, the problem I'm facing has lot of explanations and discussions on this forum like viewtopic.php?t=132823 and viewtopic.php?t=129932 - all about multiple L2TP/IPSec clients behind shared NAT. As far as I understand, the issue can be solved if such l2tp clients will use different source ports (random). According to the first link -
But t seems this functionality is not implemented in RouterOS l2tp client - there is no possibility to change the source port. If this can be a solution, how it's possible to ask Mikrotik to implement this feature (randomizing l2tp client's source port)?
In the meanwhile, any ideas how it can be implemented (srcport:1701 -> srcport:other before ESP encapsulation) on client side in other ways?
Thank you.
so it can be a solution for Mikrotik client as well. Is my understanding correct?Some client implementations are aware of this and use random ports. RouterOS server implementation is not strict in this and accepts connections from such clients, so this is a solution of the problem for these implementations
But t seems this functionality is not implemented in RouterOS l2tp client - there is no possibility to change the source port. If this can be a solution, how it's possible to ask Mikrotik to implement this feature (randomizing l2tp client's source port)?
In the meanwhile, any ideas how it can be implemented (srcport:1701 -> srcport:other before ESP encapsulation) on client side in other ways?
Thank you.
Statistics: Posted by doka — Fri Dec 29, 2023 4:27 pm