VPN
Einrichtung VPN:
Under Networks – a VPN Network for Remote VPN Users
Profiles – A Network Radius Server (USG) – Pre-Shared key
Services – Radius Server – ON and a Shared Secret
Services – Radius User – and a Shard Secret
Einrichtung Windows 10 Client
Prinzipiell geht es Bordmitteln. Aber nicht gleich, folgendes ist zusätzlich zu tun:
Windows computers needing VPN (L2TP) access need a registry tweak. Run the following command Elevated to add the key, then reboot:
REG ADD HKLM\SYSTEM\CurrentControlSet\Services\PolicyAgent /v AssumeUDPEncapsulationContextOnSendRule /t REG_DWORD /d 0x2 /f
Also, you may need to adjust your allowed protocols in the L2TP properties:
1 – On the security tab of the VPN connection properties change the type of VPN to Layer 2 Tunneling Protocol
Choose Advanced Settings right below that option and set the shared secret you used above when configuring the L2TP server.
Under allow these protocols choose Challenge Handshake and Microsoft CHAP Version 2
Helpful CLI-commands:
sudo swanctl --log
sudo cat /var/log/freeradius/radius.log