ZyXEL Communications ZyWALL 310 - 35.6.3 Configuring the L2 TP VPN Settings Example; 35.6.4 Configuring the LAN Policy Route for L2 TP Example

665 pages

To Next Page

To Next Page

To Previous Page

To Previous Page

Loading...

Chapter 35 L2TP VPN

ZyWALL Series CLI Reference Guide

305

•For the Remote Policy, create an address object that uses host type and an IP address of 0.0.0.0. It is

named L2TP_HOST in this example.

35.6.3 Configuring the L2TP VPN Settings Example

The following commands configure and display the L2TP VPN settings.

• Set it to use the Default_L2TP_VPN_Connection VPN connection.

• Configure an IP address for the range of 192.168.10.10 to 192.168.10.20. In this example it is already

created and called L2TP_.

• This example uses the default authentication method (the Zyxel Device’s local user data base).

• Select a user or group of users that can use the tunnel. Here a user account named L2TP-test has

been created.

• The other settings are left to the defaults in this example.

• Enable the connection.

35.6.4 Configuring the LAN Policy Route for L2TP Example

The following commands configure and display the policy route for the L2TP VPN connection entry.

• Set the policy route’s Source Address to the address object that you want to allow the remote users to

access (LAN_SUBNET in this example).

• Set the Destination Address to the IP address that the Zyxel Device assigns to the remote users (L2TP_

in this example).

• Set the next hop to be the Default_L2TP_VPN_Connection tunnel.

Router(config)# crypto map Default_L2TP_VPN_Connection

Router(config-crypto Default_L2TP_VPN_Connection)# policy-enforcement

Router(config-crypto Default_L2TP_VPN_Connection)# local-policy L2TP_IFACE

Router(config-crypto Default_L2TP_VPN_Connection)# remote-policy L2TP_HOST

Router(config-crypto Default_L2TP_VPN_Connection)# activate

Router(config-crypto Default_L2TP_VPN_Connection)# exit

Router(config)#

Router(config)# l2tp-over-ipsec crypto Default_L2TP_VPN_Connection

Router(config)# l2tp-over-ipsec L2TP_

Router(config)# l2tp-over-ipsec authentication default

Router(config)# l2tp-over-ipsec user L2TP-test

Router(config)# l2tp-over-ipsec activate

Router(config)# show l2tp-over-ipsec

L2TP over IPSec:

activate : yes

crypto : Default_L2TP_VPN_Connection

address : L2TP_

authentication : default

user : L2TP-test

keepalive timer : 60

first dns server : aux 1st-dns

second dns server : aux 1st-dns

first wins server :

second wins server:

Table of Contents

Other manuals for ZyXEL Communications ZyWALL 310

User Guide1090 pages

Handbook749 pages

Initial Setup9 pages

Handbook & Instructions255 pages

Quick Start Guide2 pages

Related product manuals

Preview: ZyXEL Communications ZYWALL 35

ZyXEL Communications ZYWALL 35

Preview: ZyXEL Communications ZyWall

ZyXEL Communications ZyWall

Preview: ZyXEL Communications ZYWALL 5

ZyXEL Communications ZYWALL 5

Preview: ZyXEL Communications ZyWall 110

ZyXEL Communications ZyWall 110

Preview: ZyXEL Communications ZyWALL 1100

ZyXEL Communications ZyWALL 1100

Preview: ZyWALL 2 Plus

Preview: ZyWALL USG-Series

ZyWALL USG-Series

Preview: ZyWall ATP series

ZyWall ATP series

Preview: ZyXEL Communications 310

ZyXEL Communications 310

Preview: ZyXEL Communications USG40

ZyXEL Communications USG40

ZyXEL Communications USG210

ZyXEL Communications VPN Series