L2TP VPN PC to site mode can provide terminal access to the security tunnel of the Headquarters network. If you are on a business trip, you can connect to the Internet, use the terminal's own VPN client dial-up connection, and establish a secure tunnel for data transmission.
This article describes how to build a L2TP VPN server and use each type of client to connect VPN.
Note: This article introduces the configuration method in the WVR series new version interface, similar to the older version of the interface Setup method.
First, set up L2TP VPN server
[1]
add a
VPN
address pool
Login Router interface, click
VPN > user admin > IP address pool , click, set VPN address pool.
Click
VPN > User Management , click to add users as follows:
Note: The local address is the administrative address that the VPN client accesses the router. The most general session number can be customized settings.
Click
on VPN > L2TP > L2TP Server , click, set as follows:
Note: The service interface is an outbound interface that can be connected to the Internet, and VPN clients use the IP address of the interface or the binding domain name address for VPN dialing.
It is recommended that IPSec encryption be enabled to secure VPN tunnels.
Click
Advanced Features
> NAT
settings
> Napt, click to add the following NAPT rules:
Note: The source address range fills in the address of the VPN address pool, and the interface is selected to connect to the Internet.
At this point, the L2TP VPN server is set to complete.
Second, set L2TP client dialing
There are differences in how different L2TP clients are configured, please select the client operating system and refer to the corresponding guidance documentation:
After client dialing succeeds, client information can be displayed in the L2TP server tunnel information.
Third, the connection is successful, access network
After the terminal connection succeeds, the
corresponding entry appears in the VPN > L2TP > tunneling Information list , as shown in the figure:
at this point, the L2TP VPN settings connect successfully, and VPN clients can access the Internet and visit the Headquarters intranet.