Yes i know that, but whatever i use simple command-line switches or config file, speeds are the same. It has double performance than PROFTPD and almost the same than VSFTPD, that means much...
Senior Member
Yes i know that, but whatever i use simple command-line switches or config file, speeds are the same. It has double performance than PROFTPD and almost the same than VSFTPD, that means much...
Last edited by hggomes; 28-04-2011 at 11:17.
Member
What I wish to do A) connect from my iPad/Mac/anything over secure VPN connection to my home network so I am able to see my files and B) in ideal world to use my home network connections for secure browsing from remote connection.
I can do the A part of the job over OpenVPN (but only from computer), therefore I would like to switch to PPTP or L2TP which is supported by iOS.
I understood from wpte that rp-l2tp is implemented ( http://wl500g.info/showthread.php?p=234732 ). I tried to follow theMIROn's guidance ( http://wl500g.info/showthread.php?p=231202 ). But I am unable to connect from remote location to my router's l2tp VPN.
My current set-up / steps I've done:
/etc/l2tp/l2tp.conf
/opt/etc/ppp/optionsCode:global load-handler "sync-pppd.so" load-handler "cmd.so" section sync-pppd lns-pppd-opts "file /opt/etc/ppp/options" section peer peer 0.0.0.0 mask 0 lns-handler sync-pppd section cmd
/tmp/ppp/chap-secretsCode:noauth nomppe nomppc ktune default-asyncmap nopcomp noaccomp novj nobsdcomp nodeflate lcp-echo-interval 10 lcp-echo-failure 6 # vpn clients ip range and netmask 192.168.100.1:192.168.100.10 netmask 255.255.255.0 # vpn clients dns servers #ms-dns 192.168.100.1 #ms-dns 192.168.100.2 ip-up-script /opt/etc/ppp/ip-up ip-down-script /opt/etc/ppp/ip-down
/opt/etc/ppp/ip-up (chmod +x)Code:#login server passwd IP addresses myuser * mypass *
/opt/etc/ppp/ip-down (chmod +x)Code:!/bin/sh /usr/bin/logger -t L2TP "client connected [$*]" iptables -I INPUT 1 -i $1 -j ACCEPT iptables -I FORWARD 1 -i $1 -j ACCEPT iptables -t nat -A POSTROUTING -o $1 -j MASQUERADE
/usr/local/sbin/post-firewallCode:#!/bin/sh /usr/bin/logger -t L2TP "client disconnected [$*]" iptables -D INPUT -i $1 -j ACCEPT iptables -D FORWARD -i $1 -j ACCEPT iptables -t nat -D POSTROUTING -o $1 -j MASQUERADE
/usr/local/sbin/post-bootCode:#!/bin/sh #L2TP /usr/bin/logger -t L2TP "allow incoming connections [$*]" iptables -P INPUT DROP iptables -D INPUT -j DROP iptables -A INPUT -p tcp -m udp --dport 1701 -j ACCEPT #OpenVPN access from WAN iptables -D INPUT -j DROP iptables -I INPUT -p udp --dport 1194 -j ACCEPT iptables -t nat -I PREROUTING -i vlan1 -p udp --dport 1194 -j DNAT --to-destination 192.168.1.1:1194 iptables -A INPUT -j DROP iptables -I INPUT -i tun0 -j ACCEPT iptables -I FORWARD -i tun0 -j ACCEPT iptables -I FORWARD -o tun0 -j ACCEPT iptables -I OUTPUT -o tun0 -j ACCEPT #FTP iptables -I INPUT -p tcp --dport 21 -j ACCEPT iptables -I INPUT -p tcp --dport 55000:60000 -j ACCEPT iptables -t nat -A PREROUTING -i vlan1 -p tcp --dport 55000:60000 -j DNAT --to-destination 192.168.1.1
/usr/local/.filesCode:#!/bin/sh /usr/bin/logger -t L2TP "start serving connections [$*]" # make sure configs above do exist l2tpd
I think (in case I am not totally of topic and l2tp is not meant for this purpose) my weak point is post-firewall as I am total noob in iptables and honestly I don't understand it.Code:/etc/fstab /usr/local/root/.ssh/id_rsa.pub /tmp/etc/passwd /tmp/etc/group /tmp/ppp/chap-secrets /tmp/etc/l2tp/l2tp.conf
Please let me know if I should attach any logs that could help you help me. I am not asking for solution (although I would not say no), a hint with direction would be very appreciated - I am happy to learn something.
-----------------
netstat -an | grep 1701
pss l2tpdCode:Active Internet connections (servers and established) Proto Recv-Q Send-Q Local Address Foreign Address State udp 0 0 0.0.0.0:1701 0.0.0.0:*
cat syslog.log | grep L2TPCode:356 ? S 0:00 l2tpd
Code:Jan 1 01:00:04 L2TP: allow incoming connections [vlan2 0.0.0.0 br0 192.168.1.1] Jan 1 01:00:05 L2TP: allow incoming connections [vlan2 78.102.x.x br0 192.168.1.1] Jan 1 01:00:05 L2TP: start serving connections []
Last edited by Pedro83; 18-07-2011 at 17:38.
Student Computer Engineer
hello pedro, sorry to respond so late, I've been away on holday and unable to test this myself
Now I followed the same guide you followed and also I have been unable to connect to the server. After windows tried to verify the username and password it wouldn't pass the connecting part...
It simply shows an 800 error.
Also, doesn't L2TP use port 1723?
things you could try are to place all the configuration scripts on the flasfs instead of harddrive, just in case.
Also you can just entire folders to the .files like:
it will save that folder including every sub file/folder/etc/l2tp
Junior Member
Hi guys, I've got one problem which can't solve for weeks. My rt-n16 automaticaly disconnects and then reconnects every 24 hours. It's not a matter of line provider, with another device I can get stable connection for weeks without interrupts. I set Idle Disconnect Time in seconds(option) to zero, but still problem occurs. Is there any other setting which I had to check?
Thanks.
Senior Member
What FW are you using? Original or Oleg?Originally Posted by oldgringo
Make sure you clean nvram via telnet/ssh and load defaults settings in GUI and try again.
You can also reset via hw botton on the back of the unit.
Good luck
Junior Member
I use Oleg's recent firmware version here. This problem persists since I moved from direct network vlan2 connection to pppoe through dsl modem, I've tried tens of fw versions from 2408 until now, everytime factory default but not work, there is pppoe reconnect every 24 hour. In my syslog I can see this:
May 7 17:57:49 PPPoE: Disconnected
May 7 17:57:52 pppd[1354]: Connection terminated.
May 7 17:57:52 pppd[1354]: Modem hangup
May 7 17:58:22 pppd[1354]: Connected to xx:xx:xx:xx:xx:xx via interface vlan2
May 7 17:58:22 pppd[1354]: Connect: ppp0 <--> vlan2
May 7 17:58:23 pppd[1354]: PAP authentication succeeded
May 7 17:58:23 pppd[1354]: peer from calling number xx:xx:xx:xx:xx:xx authorized
May 7 17:58:23 pppd[1354]: local IP address yyy.yyy.yyy.yyy
May 7 17:58:23 pppd[1354]: remote IP address zzz.zzz.zzz.zzz
May 7 17:58:25 PPPoE: connected to ISP
Senior Member
You are making a bridge with a dial up device, what modem model is?
Last edited by hggomes; 08-05-2012 at 14:24.
Junior Member
Zyxel Prestige 660HN-T3A in bridge mode
Senior Member
I never try with that specific model but i've never had any problem with PPPoE Bridges at all with RT-N16, not sure what is happening... Have you cleaned nvram (not defaults) sucessfuly after update the fw?
Junior Member
I started everything from the scratch, clear everything, loaded latest firmware, factory defaults and only basic settings (pppoe and dhcp) but after 24 hours again reconnect. I have to check another dsl modem, it's probably my last hope.
Senior Member
Yeah thats the way to go, good luck
Senior Member
Due to an hardware fault of my WL-500W, in the next days I'll replace it with a new RT-N16.
I was running WL500W-1.9.2.7-rtn-r4051.trx, and I'll flash RT-N16-1.9.2.7-rtn-r4051.trx.
Is it possible to save settings.cfg and flashfs from my old router and upload it on the RT-N16 (I know of different flash size) ?
Thanks
Max
Last edited by QMax; 03-06-2012 at 19:41.
Registered User
Hey,
How can I revert back to Asus original firmware on RT-N16?
I tried to "upgrade" using the web interface and it didn't work, I tried Asus restoration utility and it was unable to connect and last I tried tftp and got "Error on server : transfer cancelled" (I also tried several different tftp programs and o of course I put the router in recovery mode)
It there an "official way" of doing it?
Thanks,
Yoni
Senior Member
Press RESET botton and power it on (power light will blink), it will be in recover mode. Now use ASUS Firmware Restoration tool and upload the firmware.
Senior Member
There are problems with last builds of Oleg Firmware (at least R4517, R4519 and R4520), after upgrade change for example SSID and save & reboot, will not save configuration...
R4502 is OK!
Last edited by hggomes; 21-07-2012 at 04:54.
Posting Permissions
Reply With Quote