I have both L2TP and Wireguard VPN servers set up on my UDMP. My Win11 clients have been connecting for months. Suddenly neither version will work correctly.
The L2TP server will not connect clients and throws an error of "The L2TP connection failed because the security layer encountered a processing error during initial negotiations with the the remote computer."I verified the Microsoft Chap2 Security in checked for the advanced config for my Win11 L2TP VPN definition.
The WireGuard VPN client will connect, but there isn’t routing/connection to the internet.
I’ve deleted all T2TP and Wireguard VPN servers from my UDMP start started over; no luck. Rebooting, no luck. Help
Hello! Thanks for posting on r/Ubiquiti!
This subreddit is here to provide unofficial technical support to people who use or want to dive into the world of Ubiquiti products. If you haven’t already been descriptive in your post, please take the time to edit it and add as many useful details as you can.
Please read and understand the rules in the sidebar, as posts and comments that violate them will be removed. Please put all off topic posts in the weekly off topic thread that is stickied to the top of the subreddit.
If you see people spreading misinformation, trying to mislead others, or other inappropriate behavior, please report it!
I am a bot, and this action was performed automatically. Please contact the moderators of this subreddit if you have any questions or concerns.
Did your IP change? Is it DNS?
No, public IP is the same. DNS doesn’t seem in play, at least for the L2TP. I do not understand why I’m getting the security layer processing error. Appears like win11 client and UDMP VPN are not using same key and or Chap level; but I’ve verified that they are.
There’s a registry setting for L2TP when you’re behind NAT, too lazy to Google it for you but I think the correct value is 2. I’ve had to set this so many times for clients…
When there’s no connection to the Internet on WG, can you ping 8.8.8.8 from the broken machine? If so it’s almost certainly DNS. IT professionals have a saying… It’s always DNS.
I’m kinda shocked but that actually worked for my L2TP vpn. Thanks. I have been able to connect fine, but my routing is problematic; I have no route to my default network where much of what I want access to lives. But, I’m assuming there’s work to be done there somehow. . Thank you for the connection solution. Unifi said I had to have a public ip from my isp or it would not work. Seems that’s incorrect…