ZyXEL Communications USG 2000 User Manual
Chapter 31 L2TP VPN
ZyWALL USG 2000 User’s Guide
520
VPN Connection
Select the IPSec VPN connection the ZyWALL uses for L2TP VPN. All of
the configured VPN connections display here, but the one you use must
meet the requirements listed in
the configured VPN connections display here, but the one you use must
meet the requirements listed in
.
Note: Modifying this VPN connection (or the VPN gateway that it
uses) disconnects any existing L2TP VPN sessions.
IP Address Pool
Select the pool of IP addresses that the ZyWALL uses to assign to the
L2TP VPN clients. Use Create new Object if you need to configure a
new pool of IP addresses.
L2TP VPN clients. Use Create new Object if you need to configure a
new pool of IP addresses.
Authentication
Method
Method
Select how the ZyWALL authenticates a remote user before allowing
access to the L2TP VPN tunnel.
access to the L2TP VPN tunnel.
The authentication method has the ZyWALL check a user’s user name
and password against the ZyWALL’s local database, a remote LDAP,
RADIUS, a Active Directory server, or more than one of these. See
and password against the ZyWALL’s local database, a remote LDAP,
RADIUS, a Active Directory server, or more than one of these. See
for how to create authentication method
objects.
Allowed User
The remote user must log into the ZyWALL to use the L2TP VPN tunnel.
Select a user or user group that can use the L2TP VPN tunnel. Use
Create new Object if you need to configure a new user account (see
Create new Object if you need to configure a new user account (see
for details). Otherwise, select any to allow
any user with a valid account and password on the ZyWALL to log in.
Keep Alive
Timer
Timer
The ZyWALL sends a Hello message after waiting this long without
receiving any traffic from the remote user. The ZyWALL disconnects the
VPN tunnel if the remote user does not respond.
receiving any traffic from the remote user. The ZyWALL disconnects the
VPN tunnel if the remote user does not respond.
First DNS Server
Second DNS
Server
Server
Specify the IP addresses of DNS servers to assign to the remote users.
You can specify these IP addresses two ways.
You can specify these IP addresses two ways.
Custom Defined - enter a static IP address.
From ISP - use the IP address of a DNS server that another interface
received from its DHCP server.
received from its DHCP server.
First WINS
Server, Second
WINS Server
Server, Second
WINS Server
The WINS (Windows Internet Naming Service) server keeps a mapping
table of the computer names on your network and the IP addresses
that they are currently using.
table of the computer names on your network and the IP addresses
that they are currently using.
Type the IP addresses of up to two WINS servers to assign to the
remote users. You can specify these IP addresses two ways.
remote users. You can specify these IP addresses two ways.
Apply
Click Apply to save your changes in the ZyWALL.
Reset
Click Reset to return the screen to its last-saved settings.
Table 132 Configuration > VPN > IPSec VPN > VPN Connection (continued)
LABEL
DESCRIPTION