Upgrading from
VyOS 1.5-rolling-202408060021
to
VyOS 1.5-rolling-202409250007
broke remote access with this configuration:
$ show configuration commands | strip-private | grep remote-access
set vpn l2tp remote-access authentication local-users username xxxxxx password xxxxxx
set vpn l2tp remote-access authentication local-users username xxxxxx password xxxxxx
set vpn l2tp remote-access authentication mode 'local'
set vpn l2tp remote-access authentication protocols 'mschap-v2'
set vpn l2tp remote-access client-ip-pool default-range-pool range 'xxx.xxx.1.2-xxx.xxx.1.254'
set vpn l2tp remote-access default-pool 'default-range-pool'
set vpn l2tp remote-access gateway-address 'xxx.xxx.255.0'
set vpn l2tp remote-access ipsec-settings authentication mode 'pre-shared-secret'
set vpn l2tp remote-access ipsec-settings authentication pre-shared-secret xxxxxx
set vpn l2tp remote-access name-server 'xxx.xxx.0.1'
set vpn l2tp remote-access outside-address 'xxx.xxx.168.185'
L2TP clients on macOS and Windows can no longer connect.
Then, changing the shared secret as suggested by L2TP Remote-Access VPN 1.2.3 - #10 by jose.robles does appear to resolve the issue.