Solved

Outgoing L2TP VPN doesn't work through one of two LANs on same router

Posted on 2014-03-25
4
692 Views
Last Modified: 2014-04-12
We have a Draytek 2960 router running the latest firmware (1.0.7.1).  We have a remote site that we connect to using an L2TP VPN.  This works fine from elsewhere (3G, home, someone else's Wi-Fi, etc.) and from our guest network.  It won't work though from our main corporate network (we see error 789).  Switch back to 3G or the guest network and we're on.

The guest network has DHCP from the router, and a firewall rule blocking access to our other internal networks.  The corporate network has DHCP from the SBS2011 server, and unrestricted outgoing access in the firewall.

What setting should I change in order to rectify this?  Thanks in advance for any suggestions.
0
Comment
Question by:David Haycox
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
4 Comments
 
LVL 17

Expert Comment

by:TimotiSt
ID: 39958575
Looks like Draytek's have some issues with L2TP.
The latest-greatest 1.0.8 firmware is out for the 2960, it mentions some L2TP fixes, you could try your luck with it.

Tamas
Vigor2960-v1.0.8-release-note.pdf
0
 
LVL 2

Author Comment

by:David Haycox
ID: 39958599
Thanks, will give it a try.  Only just upgraded it to 1.0.7.1 - good to see the router is still under active development though.
0
 
LVL 2

Accepted Solution

by:
David Haycox earned 0 total points
ID: 39983630
The firmware update didn't make any difference, however I traced the problem to a setting on a switch - an HP Procurve HP 1810-48G (J9660).  Disabling "Auto DoS" fixed it.
0
 
LVL 2

Author Closing Comment

by:David Haycox
ID: 39995851
Found solution myself.
0

Featured Post

Retailers - Is your network secure?

With the prevalence of social media & networking tools, for retailers, reputation is critical. Have you considered the impact your network security could have in your customer's experience? Learn more in our Retail Security Resource Kit Today!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Before I go to far, let's explain HA (High Availability) and why you should consider it.  High availability is the mechanism used to provide redundancy to any service at the same site and appears as a single service to the users of that service.  As…
Creating an OSPF network that automatically (dynamically) reroutes network traffic over other connections to prevent network downtime.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

724 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question