Digi IX30 User Manual page 451

Virtual Private Networks (VPN)
h. (Optional) For Authentication method, select the authentication method, one of:
n
n
n
n
n
n
n
i. (Optional) Type the Metric for the tunnel, if other than the default of 1.
j. Select a firewall Zone for the tunnel. This is used by packet filtering rules and access
control lists to restrict network traffic on the tunnel.
k. (Optional): Custom PPP configuration:
i. Enable custom PPP configuration.
ii. Enable Override if the custom configuration should override the default configuration
and only use the custom options.
iii. For Configuration file, paste or type the configuration data in the format of a pppd
options file.
8. Click Apply to save the configuration and apply the change.

Command line
1. Select the device in Remote Manager and click Actions > Open Console, or log into the IX30
local command line as a user with full Admin access rights.
Depending on your device configuration, you may be presented with an Access selection
menu. Type admin to access the Admin CLI.
2. At the command line, type config to enter configuration mode:
> config
(config)>
3. (Optional) Set the UDP listening port that L2TP servers will listen on:
(config)> vpn l2tp port value
(config)>
where value is an integer between 1 and 65535. The default is 1701.
4. Set the access control for L2TP tunnels:
To limit access to specified IPv4 addresses and networks:
n
(config)> add vpn l2tp acl address end value
(config)>
Where value can be:
IX30 User Guide
None: No authentication is required.
Automatic: The device will attempt to connect using CHAP first, and then PAP.
CHAP: Uses the Challenge Handshake Authentication Profile (CHAP) to
authenticate.
PAP: Uses the Password Authentication Profile (PAP) to authenticate.
MS-CHAPv2: Uses the Microsoft version of the Challenge Handshake Authentication
Profile (CHAP) to authenticate.
If Automatic, CHAP, PAP, or MS-CHAPv2 is selected, enter the Username and
Password required to authenticate.
The default is None.
L2TP
451