Community Navigation
abbrechen
Vorschläge aktivieren
Mit der automatischen Vorschlagsfunktion können Sie Ihre Suchergebnisse eingrenzen, da während der Eingabe mögliche Treffer angezeigt werden.
Suchergebnisse werden angezeigt für 
Stattdessen suchen nach 
Meintest du 
1

Frage

2

Antwort

3

Lösung

Cannot access company files but can login to the VPN
Mizon
Forum-Checker
Forum-Checker

am ‎07.04.2025 19:21

Hi there,

 

My connection is under DS-Lite and will not allow me to access my company file locations while connected to the VPN. Can someone change my connection to a Dual Stack connection please. The VPN is operating through IPsec using IKEv2 which seems to not operate with DS-Lite. 

0 Gefällt mir
3 Antworten 3
reneromann
SuperUser
SuperUser

am ‎07.04.2025 19:35

@Mizon  schrieb:

Can someone change my connection to a Dual Stack connection please.

No.

 

@Mizon  schrieb:

The VPN is operating through IPsec using IKEv2 which seems to not operate with DS-Lite. 

This is just because your company IT department didn't set it up correctly.

IPSec supports IPv6 operation and IPSec also has no problems with CGNAT or DS-Lite if it is set up correctly.

 

So either ask your company to adopt the over 25 year old IPv6 protocol -or- go with a more costly Business tariff plan...

But with end customers plans, you will only get DS-Lite -- and this is nothing new but has been handled that way for over 10 years now.

0 Gefällt mir
Mizon
Forum-Checker
Forum-Checker
Als Antwort auf reneromann

am ‎07.04.2025 20:36

If this is the case, please explain why I am the only person in the company with this issue. It seems this is a direct issue with how my DSL line has been installed. Looking online, all paths lead to this being an issue with DS-Lite. If not, potentially an issue with my router. 

0 Gefällt mir
reneromann
SuperUser
SuperUser
Als Antwort auf Mizon

am ‎07.04.2025 20:54

@Mizon  schrieb:

If this is the case, please explain why I am the only person in the company with this issue. It seems this is a direct issue with how my DSL line has been installed. Looking online, all paths lead to this being an issue with DS-Lite.

Let's say it in this way: It is an issue with the IPSec settings (either packet fragmentation or MTU size -and- the assumption that you will only use one specific IPv4 address) which leads to those issues in combination with DS-Lite.

But as I say - this is an issue on the VPN side and not with DS-Lite itself -- your company IT can fix this by lowering the MTU size and disable the strict IPv4 check -or- by simply enabling an IPv6 capable VPN endpoint (which is no issue with IPSec at all - but might be one if older VPN appliances are being used).

 

So as I said: Either your companies IT department fixes the issues -or- you switch to a more costly business line. That's your two options...

 

Switching to DualStack is no real option (nonetheless nobody here can do it) because it is a fact that since 2011(!) all IPv4 address ranges are being in use, so ISPs have to use technologies such as CGNAT or DS-Lite as there simply are not enough IPv4 addresses for all customers.

0 Gefällt mir