Really great video as someone who is interested in getting a UDM at some point. It's interesting that they only allow for L2TP - like you said, hopefully something that they improve in the future. Love the firewall rules, by the way!
Hi , i have this scenario , does it mean as long as the VPN established, i just have to do 2 policy rules as you did , and why 2 policy rules while the firewall is stateless! , 2. "A customer has a VPN app installed. When the app is turned on and the VPN connection is established, the user is not able to connect to his home devices (e.g., Google Chromecast, robot vacuum cleaner, Alexa, etc). a. What could be the cause and how would you troubleshoot the issue?"
I’ve tried this with my USG pro and ck2+ and can get it to work, but my Remote VPN clients don’t actually show up as clients in my controller so I never know when there is a vpn connection.
@@TechMeOut5 I also noticed, that I have the option to use PPTP, which UniFi says is faster, but not as secure. My VPN can cross VLAN’s without the need for any firewall rules.
Hi buddy. not being to connect can be caused by many factors. it may be one single end result - not being able to connect but this end result can be a result of hundreds of factors. i'll give you one example - i am not able to connect to my vpn from work because in my company we block L2TP on our firewall. so, the fact that you are not able to connect is something that you will have to investigate by examining every link in the chain. sadly, there is no other way
well...going forward, at least in the near future ubiquiti is only going to support l2tp for remote access vpn. so...it is what it is. either choose a different firewall or hope that ubiquiti will start supporting more modern vpn protocols like wireguard
*Hey guys. If you liked this video, please give it a like!*
Really great video as someone who is interested in getting a UDM at some point. It's interesting that they only allow for L2TP - like you said, hopefully something that they improve in the future. Love the firewall rules, by the way!
Thanks for watching! And yeah...definitely get yourself a UDM or a UDM Pro, you will love the entire ecosystem.
Hi , i have this scenario , does it mean as long as the VPN established, i just have to do 2 policy rules as you did , and why 2 policy rules while the firewall is stateless! , 2. "A customer has a VPN app installed. When the app is turned on and the VPN connection is established, the user is not able to connect to his home devices (e.g., Google Chromecast, robot vacuum cleaner, Alexa, etc).
a. What could be the cause and how would you troubleshoot the issue?"
Does this also allow the LAN IPs to contact your VPN client? It seems like it does.
Hi, in my USG doens´t have the Public IP to setup. Have the same controller version. Many Thanks
I’ve tried this with my USG pro and ck2+ and can get it to work, but my Remote VPN clients don’t actually show up as clients in my controller so I never know when there is a vpn connection.
That's a great point you are making. UniFi in general has to do VPN better all around
@@TechMeOut5 I also noticed, that I have the option to use PPTP, which UniFi says is faster, but not as secure. My VPN can cross VLAN’s without the need for any firewall rules.
Cool! The firewall portion of process...why didn't i think of that???
i followed your step but VPN unsuccessful, doesn't connect
Hi buddy. not being to connect can be caused by many factors. it may be one single end result - not being able to connect but this end result can be a result of hundreds of factors. i'll give you one example - i am not able to connect to my vpn from work because in my company we block L2TP on our firewall. so, the fact that you are not able to connect is something that you will have to investigate by examining every link in the chain. sadly, there is no other way
how do we give each vpn users different access to network
Hi. Great question. Its a bit tricky but i promise to create a video on this spesific topic!
@@TechMeOut5 yes very tricky I have been trying for weeks and just can’t figure it out..
You are a legend. Thanks.
Wow, thanks for the heart warming words! Thanks for watching.
L2TP is dead in android 12 so this video is useless for remote connections from a phone device.
well...going forward, at least in the near future ubiquiti is only going to support l2tp for remote access vpn. so...it is what it is. either choose a different firewall or hope that ubiquiti will start supporting more modern vpn protocols like wireguard