Hi guys,

We have several remote VPN users that connect to our Draytec using L2TP VPN's. Is is possible to record to a log file (maybe via a Syslog Server)
when a user connects/disconnects to the VPN in order that we can track remote access to our network? Or maybe there is some other way to track when a user connects?

Thanks

PT

Yes if you point the router to a working syslog server and switch on vpn logging you should see all sorts of stuff. (for example) L2PT & the others all work in a similar way.

[H2L][UP][IPsec][@1:user_name from 1.1.1.1]
## XAuth DBG : Verify Username/Password : user_name/********* ifno = 19 index = 1#012#015: 1 Time(s)
[H2L][DOWN][IPsec][@1:user_name from 1.1.1.1](total time connected : 00:02:00)

There is a lot of noise when you include all the handshake stuff and the endless probes you will see from the likes of censys/shodan/etc so you might want to use something like logwatch to keep things in check.