L2TP Client: pfSense

Back up to the Incoming L2TP Category
From AAISP Support Site


pfSense is an open source firewall distribution, built on top of the FreeBSD Operating System.

It is possible to create a L2TP client interface and route both IPv4 and IPv6 traffic over it.


Configuration Guide

Step 1

The first step is to add a new L2TP Interface to pfSense.

This is done by navigating from Interfaces ⟶ (assign), then clicking on 'PPPs' and then press the '+ Add' button.

 

On the next screen, configure the new interface to use L2TP:

  1. Set the Link Type to L2TP
  2. Set the outgoing Link Interface (most likely WAN)
  3. Set the Username to your AAISP login
  4. Set the Password to you AAISP password - as seen on the 'Broadband Circuit Details' page on
  5. Set the Gateway IP to '194.4.172.12' - by using an IP address you can avoid performing a DNS lookup, and having to ensure DNS works before and after the tunnel comes up. - though the IP can change - so we'd suggest actually using l2tp.aa.net.uk
  6. No Local IP Address is required - it will be chosen automatically

 

When you are finished, press Save at the bottom of the screen.

Step 2

Then go back to the Interfaces ⟶ (assign) main menu. The next step is to assign the interface and configure it.

Press the '+ Add' button next to the new L2TP0 interface:

 

The interface can then be configured to use IPv4 and/or IPv6:

  1. I used the description/name 'L2TP' for my interface
  2. Set the IPv4 Configuration Type to 'L2TP'
  3. Set the IPv6 Configuration Type to 'SLAAC' - you don't actually need a global IPv6 address on the interface at all - it will just use Link Local addressing, but setting to SLAAC seems to enable IPv6 on the interface without causing any problems

When you are finished, press Save at the bottom of the screen.