Chapter 8 Security
Table 56 L2TP Server (continued)
LABEL | DESCRIPTION |
Support | Select the L2TP Protocol Version: All, 2, or 3. L2TPv2 is a standard method for |
Protocol | tunneling |
Version | for other types of networks including frame relay and ATM. |
| |
|
|
Auth Protocol | Select the Authentication Protocol allowed for the connection. Options are: |
| • PAP - Password Authentication Protocol (PAP) authentication occurs in clear |
| text and does not use encryption. It’s probably not a good idea to rely on this |
| for security. |
| • CHAP - Challenge Handshake Authentication Protocol (CHAP) provides |
| authentication through a shared secret key and uses a three way handshake. |
| • MSCHAPv1 - Microsoft CHAP v1 (MSCHAPv1) provides authentication |
| through a shared secret key and uses a three way handshake. It provides |
| improved usability with Microsoft products. |
| • MSCHAPv2 - Microsoft CHAP v2 (MSCHAPv2) provides encryption through a |
| shared secret key and uses a three way handshake. It provides additional |
| security over MSCHAPv1, including |
|
|
MPPE | If MSCHAPv1 or MSCHAPv2 is selected as an Auth Protocol, use the drop- |
Encryption | down list box to select the type of Microsoft |
| Options are: |
| • MPPE 40 - MPPE with 40 bit session key length |
| • MPPE 128 - MPPE with 128 bit session key length |
| • Auto - Automatically select either MPPE 40 or MPPE 128 |
|
|
Local IP | Enter the local endpoint for the L2TP connection. |
Address |
|
|
|
Remote Start | Enter the local IP address range the WiMAX Device assigns to remote users if the |
IP | remote client device is set to obtain an IP address automatically. |
|
|
Restrict Client | Select Yes to restrict the remote client device local IP address. |
IP? |
|
|
|
Allow Client IP | Enter the local IP address range the remote client device is restricted to. If the |
| client device is configured with a static IP address, it should be in this range. |
|
|
Idle Timeout | Enter the time in minutes to timeout L2TP connections. |
|
|
DNS Server 1 | Specify the IP addresses of DNS servers to assign to the remote users. |
DNS Server 2 |
|
|
|
User Access List |
|
|
|
User Name | Enter the user name for the remote user. |
|
|
Server | Select the server that the remote user has access to: PPTPD, L2TPD or Both. |
|
|
Password | Enter the password for the remote user. |
|
|
IP Address | Enter the local IP address the WiMAX Device assigns to the remote user. |
| Entering 0.0.0.0 indicates the local IP address will be dynamically assigned. |
|
|
Delete | Select an entry and click this to delete it. |
|
|
Add | Click this to create a new entry. |
|
|
OK | Click this to save the changes. |
|
|
Connection List |
|
|
|
User Name | This displays the user name for the remote user. |
|
|
Remote IP | This displays the remote endpoint IP address of the remote user. |
Address |
|
|
|
L2TP IP | This displays the local IP address of the L2TP server. |
Address |
|
|
|
Login Time | This displays the time the L2TP connection started. |
|
|
134 |
|
WiMAX Device Configuration User’s Guide | |
|
|