L2TP Configuration

Table 7–7: L2TP Server Configuration Parameters

 

 

Parameter

Description

 

 

 

 

WINS Servers

If you are using Microsoft Networking, type the IP addresses of your primary

 

(WINS Server 1) and secondary (WINS Server 2) WINS servers.

 

 

DNS Servers

Determines the DNS severs that the PPTP Server uses:

 

• Select Device Acts as DNS Relay to enable the X family device to act a proxy-

 

DNS server (DNS relay), passing DNS queries to its configured DNS servers.

 

• Select Specify DNS Server to enter up to two local DNS server IP addresses, in

 

order in which they are to be accessed, in the DNS Server fields.

 

 

L2TP

Determines how IP addresses are allocated to clients connected through the

Addresses

L2TP server:

 

• Select IP address assigned by RADIUS to enable the X family device to use

 

the RADIUS server to assign the L2TP client IP address. The RADIUS server

 

must be enabled on the RADIUS page (Authentication > RADIUS).

 

• Specify IP Address Group and select an existing address group to enable the X

 

family device to assign the L2TP client an IP address from the addresses

 

included in the IP Address group. Use the IP Addresses page (Network >

 

Configuration > IP Address Groups) to create IP Address Groups.

 

 

L2TP Configuration

Enable L2TP Server and Configure L2TP Client and Addresses

Enable L2TP Server and Configure L2TP Client and Addresses

STEP 1

STEP 2

STEP 3

STEP 4

STEP 5

STEP 6

If you are not using RADIUS to assign IP addresses, create an IP address group (Network > Configuration > IP Address Groups) containing the pool of IP addresses that the X family device will use to allocate IP addresses to L2TP VPN clients.

From the LSM menu, select VPN > L2TP Status. Then click the L2TP Server Configuration tab.

On the L2TP Server Configuration page, check Enable L2TP Server.

This allows VPN clients to use the X family as a VPN terminator for L2TP.

Select the remote security zone on which to terminate the VPN from the L2TP security zone drop-down list.

To use Microsoft Point-to-Point Encryption, check Require encryption.

This option provides additional security, and is supported by Windows VPN clients.

To use Microsoft Networking, enter the IP addresses of your primary and secondary WINS servers in the WINS Server 1 and WINS Server 2 fields respectively.

X Family LSM User’s Guide V 2.5.1

211