Page MenuHomeVyOS Platform

Add support for unencrypted L2TPv2 client connections
Open, Requires assessmentPublicFEATURE REQUEST

Description

Please can you add support for unencrypted L2TPv2 over UDP (RFC2661) clients to VyOS.

Configuration might look something like this:

set interface l2tpv2 l2tp0 server l2tp.aa.net.uk
set interface l2tpv2 l2tp0 default-route force
set interface l2tpv2 l2tp0 mtu 1492
set interface l2tpv2 l2tp0 enable-ipv6
set interface l2tpv2 l2tp0 user-id <Username>
set interface l2tpv2 l2tp0 password <Password>

Or maybe l2tpv2 is an encapsulation type of another type of interface.

Andrews and Arnold (AAISP) offer this as a commercial service for people using 'inferior broadband':
https://www.aa.net.uk/broadband/l2tp-service/

They provide configuration guides:

The Cisco configuration seems the least intuitive.

As originally asked here:
https://forum.vyos.io/t/l2tp-for-ip-tunnel/3166

Details

Difficulty level
Unknown (require assessment)
Version
-
Why the issue appeared?
Will be filled on close
Is it a breaking change?
Unspecified (possibly destroys the router)

Event Timeline

njh created this task.Feb 3 2019, 5:17 PM
njh updated the task description. (Show Details)
njh updated the task description. (Show Details)Feb 3 2019, 5:35 PM
pasik added a subscriber: pasik.Feb 4 2019, 7:34 PM
njh awarded a token.Jan 1 2020, 3:58 PM
njh rescinded a token.
njh awarded a token.
jmcg added a subscriber: jmcg.Oct 17 2020, 9:39 AM

Also very interested in this. Ready and willing to test.

Another willing to test.

njh updated the task description. (Show Details)Mon, Nov 2, 12:32 AM
njh set Is it a breaking change? to Unspecified (possibly destroys the router).
njh added a comment.Mon, Nov 2, 12:42 AM

Not had a lot of time recently, but I have kind of been waiting for the configuration nodes to be ported to Python, so that this can be written in the new / modern way.

Now that this is mostly done, I suspect that it wouldn't be too hard to implement - copying a different PPP based module as a starting point.

It looks like xl2tpd is available in Debian, so won't need packaging separately:
https://packages.debian.org/stable/xl2tpd

And it looks like the Kernel modules exist in my VyOS kernel (VyOS 1.3-rolling-202006110117):

vyos@vyos:~$ grep 'L2TP' /boot/config-4.19.125-amd64-vyos 
CONFIG_NETFILTER_XT_MATCH_L2TP=m
CONFIG_L2TP=m
CONFIG_L2TP_DEBUGFS=m
CONFIG_L2TP_V3=y
CONFIG_L2TP_IP=m
CONFIG_L2TP_ETH=m
CONFIG_PPPOL2TP=m