The L2TP (Layer 2 Tunneling Protocol) used by the L2TP VPN, combines the characteristics of PPTP and L2F. In addition, it resolves interoperability problems in both protocols. It allows creating a tunnel at data link level, so that IP, IPX and AppleTalk packets sent privately can be transported via the Internet. In addition, as it lacks encryption and authentication mechanisms secure data, it relies on IPSec which, unlike L2TP, does use the NAT-T (NAT transversal) mechanism.
Panda GateDefender Integra only lets you create and modify L2TP VPNs in server mode given the limitations of the implementation of the L2TP protocol. In the case of a hybrid protocol, for example, L2TP/IPSec, Panda GateDefender Integra can be configured in both server and client mode, thereby overcoming the limitations of L2TP.
Instructions for configuring L2TP VPNs
Go to the Panda GateDefender Integra administration console.
Click on VPN in the panel on the left.
Then select VPN management, and then L2TP VPN management.
In L2TP, you will find the parameters required to configure a VPN in Panda GateDefender Integra using the L2TP protocol:
Name: Descriptive name of the VPN.
Enabled: Use the checkbox to enable or disable the VPN.
IP group: List displaying the IP address groups created. Here you can select the range of IP addresses associated to this VPN. Click on the link Address settings to access the IP address settings screen.
Users: List displaying the user groups created. Here you can select the user group with access to the VPN. Click on the link User settings to access the user settings screen.
You also have the option of including the IP addresses of the DNS and WINS servers Click on the link Address settings to access the IP address settings screen.
By clicking on the icon associated with the DNS and WINS server options you can change the text field for a drop-down menu and choose the value to assign to each option. Click on OK to save the changes. Otherwise, click on Cancel.
NOTE: In the case of a L2TP VPN, it is essential to define the rules in the firewall in order to allow the flow of IKE (UDP port 500), as well as L2TP traffic (UDP port 1701). If using the Panda GateDefender Integra firewall, the rules will be defined automatically.