Hello,
I have the UDMP-SE and I have setup a standard L2TP VPN.
However, L2TP is quite outdated and I would want to use other protocol.
AFAIK L2TP is the only protocol that the UDMP support nativly? Anyone know if IPSEC or other protocol is in the pipeline for support? If not, what are my options except for L2TP.
OpenVPN and Wireguard are available in Early Access software builds. OpenVPN is part of the EA UID app. Wireguard is called Teleport and is available with EA versions of the base firmware, EA network app, and WiFi man (all 3 are needed for Teleport). It’s in the works, but I have no idea when it will be Generally Available.
Nope. Crap isn’t it. A load of clients won’t even support L2TP anymore.
You can install Wireguard on it. It’ll require manual configuration through config.gateway.json
I have a UDMP-SE and I run ocserv (Cisco Anyconnect VPN). You can install it via apt and make a few small edits to their systemd files. Make a directory called /mnt/data/ocserv and put your config files there to weather firmware upgrades. Have your systemd files point towards that. Set up a port forward rule and a firewall rule via the WAN local and voila… Cisco Anyconnect VPN. I set up Letsencrypt too (certbot) via apt and I have a nice SSL certificate for it to boot too.
The nice thing about ocserv is its a SSL VPN… so if you do a lot of work at outside entities that block normal VPN ports, you usually can get through on an SSL VPN.
WireGuard is quite easy to install.
WiFi man
Latest version of WiFiman now has a “Teleport” icon at the bottom (I’m not in EA, and this is the standard app from Play Store). Seems like they are getting ready to launch?
Indeed crappy… Any official statements regarding future protocol support?
Alright… I assume it won’t appear in the GUI after install? It needs to be mangaed through SSH or something?
This is a UDMP not USG. Config.gateway.json isn’t applicable, is it?
Not that I know of. Id just install Wireguard instead. There’s instructions for that online
Nope, that’s just a package you install on the router. No impact on the controller.
Checkout this out https://help.ui.com/hc/en-us/articles/215458888-UniFi-USG-Advanced-Configuration-Using-config-gateway-json
Oh, you’re right, sorry, I missed that… There’s still tutorials out there to install wg on UDM(P). Might be worth a try.