In article <e8da578e-c03b-7ae6-3062-b0da729dc179%gmail.com@localhost>,
Chuck Zmudzinski <frchuckz%gmail.com@localhost> wrote:
I have used netbsd-6 and netbsd-7 with racoon to set up IKEv1/L2TP/IPsec
VPN with Windows clients. I have not tried IKEv2 and based on the little
research I have done I don't think it is possible using an out of the box
NetBSD/pkgsrc configuration. Even for IKEv1 I needed to hack the NetBSD
kernel to get IKEv1 and IPsec NAT-traversal to work with IPsec, and I used
a locally modified version of the ancient and apparently no longer
maintained rp-l2tp package to set up l2tp tunnels. If you don't need NAT
traversal, that is, if neither clients nor the server are behind a NAT box,
it might be easier to do...
In current and 8 it should work out of the box...
https://wiki.netbsd.org/tutorials/how_to_create_an_l2tp_ipsec_tunnel_between_an_android_or_iphone_or_ios_device_to_netbsd/
christos