Pptp/L2Tp Clients - D-Link NetDefend DFL-210 User Manual
Network security firewall
Hide thumbs
Also See for NetDefend DFL-210:
- User manual (495 pages) ,
- Log reference manual (476 pages) ,
- Cli reference manual (213 pages)
Table of Contents
Advertisement
9.5.4. PPTP/L2TP Clients
Default: 10
9.5.4. PPTP/L2TP Clients
The PPTP and L2TP protocols are described in the previous section. In addition to being able to act
as a PPTP or L2TP server, NetDefendOS also offers the ability to act as a PPTP or L2TP clients.
This can be useful if PPTP or L2TP is preferred as the VPN protocol instead of IPsec. One D-Link
Firewall can act as a client and connect to another unit which acts as the server.
Client Setup
PPTP and L2TP shares a common approach to client setup which involves the following settings:
General Parameters
•
Name - A symbolic name for the client.
•
Interface Type - Specifies if it is a PPTP or L2TP client.
•
Remote Endpoint - The IP address of the remote endpoint. Where this is specified as a URL,
the prefix dns: must be precede it.
Names of Assigned Addresses
Both PPTP and L2TP utilizes dynamic IP configuration using the PPP LCP protocol. When
NetDefendOS receives this information, it is stored in symbolic host/network names. The settings
for this are:
•
Inner IP Address - The host name that is used for storing the assigned IP address. If this
network object exists and has a value which is not 0.0.0.0 then the PPTP/L2TP client will try to
get that one from the PPTP/L2TP server as the preferred IP.
•
Automatically pick name - If this option is enabled then NetDefendOS will create a host name
based on the name of the PPTP/L2TP interface, for example ip_PPTPTunnel1.
•
Primary/Secondary DNS Name - This defines the DNS servers from a list of predefined
network objects.
Authentication
•
Username - Specifies the username to use for this PPTP/L2TP interface.
•
Password - Specifies the password for the interface.
•
Authentication - Specifies which authentication protocol to use.
•
MPPE - Specifies if Microsoft Point-to-Point Encryption is used and which level to use.
If Dial On Demand is enabled then the PPTP/L2TP tunnel will not be set up until traffic is sent on
the interface. The parameters for this option are:
•
Activity Sense - Specifies if dial-on-demand should trigger on Send or Recv or both.
Note
A PPTP/L2TP server will not provide information such as gateway or broadcast
addresses, as this is not used with PPTP/L2TP tunnels. When using PPTP/L2TP, the
default route is normally routed directly across the PPTP/L2TP tunnel without a
specified gateway.
369
Chapter 9. VPN
- Quick Links:
- The Cli
Hide quick links:
Advertisement
Table of Contents
Troubleshooting
