ZyXEL Communications USG 2000 520

Chapter 31 L2TP VPN

Table 132 Configuration > VPN > IPSec VPN > VPN Connection (continued)

LABEL	DESCRIPTION
VPN Connection	Select the IPSec VPN connection the ZyWALL uses for L2TP VPN. All of
	the configured VPN connections display here, but the one you use must
	meet the requirements listed in IPSec Configuration Required for L2TP
	VPN on page 517.

		Note: Modifying this VPN connection (or the VPN gateway that it
		uses) disconnects any existing L2TP VPN sessions.

	IP Address Pool	Select the pool of IP addresses that the ZyWALL uses to assign to the
		L2TP VPN clients. Use Create new Object if you need to configure a
		new pool of IP addresses.

	Authentication	Select how the ZyWALL authenticates a remote user before allowing
	Method	access to the L2TP VPN tunnel.
		The authentication method has the ZyWALL check a user’s user name
		and password against the ZyWALL’s local database, a remote LDAP,
		RADIUS, a Active Directory server, or more than one of these. See
		Chapter 45 on page 733 for how to create authentication method
		objects.

	Allowed User	The remote user must log into the ZyWALL to use the L2TP VPN tunnel.
		Select a user or user group that can use the L2TP VPN tunnel. Use
		Create new Object if you need to configure a new user account (see
		Section 40.2.1 on page 692 for details). Otherwise, select any to allow
		any user with a valid account and password on the ZyWALL to log in.

	Keep Alive	The ZyWALL sends a Hello message after waiting this long without
	Timer	receiving any traffic from the remote user. The ZyWALL disconnects the
		VPN tunnel if the remote user does not respond.

	First DNS Server	Specify the IP addresses of DNS servers to assign to the remote users.
	Second DNS	You can specify these IP addresses two ways.
	Second DNS	Custom Defined - enter a static IP address.
	Server	Custom Defined - enter a static IP address.
		From ISP - use the IP address of a DNS server that another interface
		received from its DHCP server.

	First WINS	The WINS (Windows Internet Naming Service) server keeps a mapping
	Server, Second	table of the computer names on your network and the IP addresses
	WINS Server	that they are currently using.
		Type the IP addresses of up to two WINS servers to assign to the
		remote users. You can specify these IP addresses two ways.

	Apply	Click Apply to save your changes in the ZyWALL.

	Reset	Click Reset to return the screen to its last-saved settings.

520
520	ZyWALL USG 2000 User’s Guide