L2TP/IPSEC VPN Windows connection problems

I have RUTX50 with the FW: RUTX_R_00.07.06.3
I’m trying to create VPN connection between router and my windows laptop. Exactly like here:
I was following the example unfortunately it doesn’t work. Here is my configuration:



As the result I receive following message:

I was also trying to create PPTP connection between mentioned devices and it was working fine.
Do you have any idea what is wrong with my setup?
Best Regards

First of all, can you upgrade the firmware of your RUTX50 to the latest version 07.06.10
Via WebGUI or manually from here:

RUTX50 Firmware Downloads - Teltonika Networks Wiki

It makes things way easier to troubleshoot then.


As TeWe mentioned, please upgrade your device to the latest firmware version, after try to replicate the issue. If the issue persists, please let me know so I can assist you further.

Best Regards,

I updated the FW. Everything looks exactly the same


Apologies for the delayed response. I have updated instructions on how to establish this connection successfully.

1. Firstly, it is necessary to generate certificates on Linux. (On my Windows PC, I installed Ubuntu CLI from the Microsoft Store and performed all the steps there). To do so, execute the following commands:

  1. ipsec pki --gen > caKey.der

  2. ipsec pki --self --in caKey.der --dn "C=CH, O=strongSwan, CN=RUT_pub_IP" --ca > caCert.der

  3. ipsec pki --gen > serverKey.der

  4. ipsec pki --issue --in serverKey.der --type priv --cacert caCert.der --cakey caKey.der --dn "C=CH, O=strongSwan, CN=RUT_pub_IP" --san RUT_pub_IP --san @RUT_pub_IP --flag serverAuth --flag clientAuth --flag ikeIntermediate > serverCert.der

  5. openssl x509 -inform der -outform pem -in caCert.der -out caCert.crt

  6. openssl x509 -inform der -outform pem -in serverCert.der -out serverCert.crt

  7. openssl rsa -inform der -outform pem -in caKey.der -out caKey.key writing RSA key

  8. openssl rsa -inform der -outform pem -in serverKey.der -out serverKey.key writing RSA key

Remember to change all instances of RUT_pub_IP to the RUT’s public IP address.

2. Next, configure L2TP as shown in the screenshot below:

3. Then, configure IPSEC as depicted in the screenshots provided.

  1. image

  2. image

  3. image

4. Following that, double click on the caCert.crt certificate file:

  1. Press ‘Open’.

  2. Press ‘Install Certificate’

  3. Select ‘Local Machine’ and press ‘Next’.

  4. Select ‘Automatically select the certificate’ and press ‘Next’ and Finish.

5. Once these steps are completed, configure L2TP/IPSEC with certificates on Windows, save the settings as shown in the screenshot, and connect.

Hope this helps!

Best Regards,

This topic was automatically closed after 15 days. New replies are no longer allowed.