Unifi VPN L2TP Windows client setup

Windows 11

Lite nya instruktioner för Windows 11 och vad som behöver göras för att kunna ansluta till en Unifi gateway som VPN server

How To Configure Windows 11 VPN Client

  1. Click on your Search Bar, start typing VPN and you should see and click on VPN settings.
  2. A VPN Settings window should have opened. Find and click on the Add VPN button.
  3.  For VPN provider click the dropdown and select Windows (built-in).
  4. For Connection Name, give it something that is identifiable to you.
  5. For Server name or address, use your UDM Pro’s WAN IP Address you selected for VPN.
  6.  For VPN type click the dropdown and have L2TP/IPsec with pre-shared key selected.
  7. Enter the Pre-shared key that you entered on your UDM Pro when configuring VPN Access.
  8. For type of sign-in info select User name and password from the dropdown.
  9. Enter your VPN User Name and your Password.
  10. Click the Save button.
  11.  Success, you have created VPN Access for your Windows 11 computer.
  12. Click Connect and you should have a successful connection. Remember you will not be able to connect while inside the same network. To test use a hot spot.
  13. Here is a link to UniFi’s documentation

UniFi Gateway – L2TP VPN Server

L2TP is a traditional VPN server found in the Teleport & VPN section of your Network application that allows you to connect to the UniFi network from a remote location. A UniFi Gateway or UniFi Cloud Gateway is required.

Should I Use L2TP?

On Next-Gen UniFi gateways, there are much better options available such as Teleport and Wireguard.

  • For mobile users, we strongly recommend to use Teleport instead of L2TP. Teleport is faster, more secure, and requires zero configuration. 
  • For desktop and laptop users, we strongly recommend to use Wireguard instead of L2TP. Wireguard is faster, more secure, and requires less configuration.

How Does it Work?

After enabling L2TP, add a User and share the Pre-Shared Key and user credentials with your desired recipient. If available, the recipient can use the built-in L2TP VPN on their choice of operating system.

Compatibility and Limitations

There are several caveats associated with using L2TP. These are not specific to the UniFi gateway and associated with the protocol itself. 

  • L2TP is losing support on several different operating systems. Android versions that still support L2TP require the usage of the Weak Ciphers option.
  • L2TP encounters issues when the UniFi gateway is behind NAT, even when forwarding the ports on the upstream router. On Windows clients, you must modify the registry.
  • Windows clients must be configured to enable MS-CHAP v2. See here:

 

 

 

 

 

 

  • MacOS clients must be configured to send all traffic over the VPN. See here:








  • L2TP cannot push any routes to clients. Split tunneling requires static routes to be manually added on each client.

Du kanske också gillar…

Populära inlägg