Securepoint Security Systems



Similar documents
How-to: VPN with L2TP and certificates and the Mac OSX VPN-client. Securepoint Security System Version 2007nx

Securepoint Security Systems

Securepoint Security Systems

Purple Sturgeon Standard VPN Installation Manual for Windows XP

How to setup a VPN on Windows XP in Safari.

Configuration Guide. How to set up the IPSec site-to-site Tunnel between the D-Link DSR Router and the Sonicwall Firewall.

How-to: HTTP-Proxy and Radius Authentication and Windows IAS Server settings. Securepoint Security System Version 2007nx

I. What is VPN? II. Types of VPN connection. There are two types of VPN connection:

How To Configure L2TP VPN Connection for MAC OS X client

Creating a Client-To-Site VPN. BT Cloud Compute. The power to build your own cloud solutions to serve your specific business needs.

Configuring the OfficeConnect Secure Gateway for a remote L2TP over IPSec connection

How do I set up a branch office VPN tunnel with the Management Server?

For paid computer support call

Cisco QuickVPN Installation Tips for Windows Operating Systems

Configuration Guide. How to set up the IPSec site-to-site Tunnel between the D-Link DSR Router and the Fortinet Firewall. Overview

VPN L2TP Application. Installation Guide

Immotec Systems, Inc. SQL Server 2005 Installation Document

Network/VPN Overlap How-To with SonicOS 2.0 Enhanced Updated 9/26/03 SonicWALL,Inc.

How To Set Up A Pploe On A Pc Orca On A Ipad Orca (Networking) On A Macbook Orca 2.5 (Netware) On An Ipad 2.2 (Netrocessor

Create a VPN on your ipad, iphone or ipod Touch and SonicWALL NSA UTM firewall - Part 1: SonicWALL NSA Appliance

OvisLink 8000VPN VPN Guide WL/IP-8000VPN. Version 0.6

Configuring a Check Point FireWall-1 to SOHO IPSec Tunnel

IPsec VPN Application Guide REV:

Configuring IPsec between a Microsoft Windows XP Professional (1 NIC) and the VPN router

7. Configuring IPSec VPNs

Global VPN Client Getting Started Guide

How To Industrial Networking

How To Establish IPSec VPN connection between Cyberoam and Mikrotik router

Application Note. Using a Windows NT Domain / Active Directory for User Authentication NetScreen Devices 8/15/02 Jay Ratford Version 1.

Configuration Guide. How to set up the IPSec site-to-site Tunnel between the D-Link DSR Router and the Cisco Firewall. Overview

How To Set Up A Vpn Tunnel Between Winxp And Zwall On A Pc 2 And Winxp On A Windows Xp 2 On A Microsoft Gbk2 (Windows) On A Macbook 2 (Windows 2) On An Ip

Step-by-Step Setup Guide Wireless File Transmitter FTP Mode

Astaro User Portal: Getting Software and Certificates Astaro IPsec Client: Configuring the Client...14

CREATING AN IKE IPSEC TUNNEL BETWEEN AN INTERNET SECURITY ROUTER AND A WINDOWS 2000/XP PC

Easy Setup Guide for the Sony Network Camera

Outlook Profile Setup Guide Exchange 2010 Quick Start and Detailed Instructions

ZyWALL USG-Series. How to setup a Site-to-site VPN connection between two ZyWALL USG series.

DFL-210/260, DFL-800/860, DFL-1600/2500 How to setup IPSec VPN connection

Step-by-Step Setup Guide Wireless File Transmitter FTP Mode

Establishing a VPN tunnel to CNet CWR-854 VPN router using WinXP IPSec client

Hallpass Instructions for Connecting to Mac with a Mac

How To Configure Apple ipad for Cyberoam L2TP

DISTRICT SCHOOL BOARD OF COLLIER COUNTY. Internet Technology. Setting up VPN Access Windows 7. Revised

Using the ECM VPN with Windows 7

Configuring an IPsec VPN to provide ios devices with secure, remote access to the network

Enable VPN PPTP Server Function

Configuring TheGreenBow VPN Client with a TP-LINK VPN Router

How to Install a Network-Licensed Version of IBM SPSS Statistics 19

Configuring Check Point VPN-1/FireWall-1 and SecuRemote Client with Avaya IP Softphone via NAT - Issue 1.0

Netcomm NB604N. Modem Configuration Guide. Netcomm NB604N. Configuring in Layer2 PPPoE for Windows XP and 2000 IMPORTANT MESSAGE

Sophos UTM. Remote Access via PPTP Configuring Remote Client

HowTo: Logging, reporting, log-analysis and log server setup Version 2007nx Release 3. Log server version 2.0

Global VPN Client Getting Started Guide

Lab 4.4.8a Configure a Cisco GRE over IPSec Tunnel using SDM

Configuring Global Protect SSL VPN with a user-defined port

How To Establish Site-to-Site VPN Connection. using Preshared Key. Applicable Version: onwards. Overview. Scenario. Site A Configuration

Configuration Guide. Remote Backups How-To Guide. Overview

Astaro Security Gateway V8. Remote Access via L2TP over IPSec Configuring ASG and Client

Using IPsec VPN to provide communication between offices

VPNC Interoperability Profile

Setting up VMware ESXi for 2X VirtualDesktopServer Manual

Cloud Services ADM. Agent Deployment Guide

Cox Managed CPE Services. RADIUS Authentication for AnyConnect VPN Version 1.3 [Draft]

RouteFinder. IPSec VPN Client. Setup Examples. Reference Guide. Internet Security Appliance

Installing the Microsoft Network Driver Interface

Configuring the PIX Firewall with PDM

MultiSite Manager. Setup Guide

Configuring Windows 2000/XP IPsec for Site-to-Site VPN

Creating client-server setup with multiple clients

VPN Configuration of ProSafe Client and Netgear ProSafe Router:

Configuring IPsec VPN with a FortiGate and a Cisco ASA

Using Device Discovery

Sophos UTM. Remote Access via PPTP. Configuring UTM and Client

Creating a Gateway to Client VPN between Sidewinder G2 and a Mac OS X Client

How to access peers with different VPN through IPSec. Tunnel

ESET SECURE AUTHENTICATION. Cisco ASA Internet Protocol Security (IPSec) VPN Integration Guide

Defender EAP Agent Installation and Configuration Guide

If you have questions or find errors in the guide, please, contact us under the following address:

SSL Certificate Based VPN

Setting up a VPN connection Windows XP

Wireless-N. User Guide. PCI Adapter WMP300N (EU) WIRELESS. Model No.

Configuring the WT-4 for Upload to a Computer (Ad-hoc Mode)

Pre-lab and In-class Laboratory Exercise 10 (L10)

Setting up VPN Access for Remote Diagnostics Support

Smart Control Center. User Guide. 350 East Plumeria Drive San Jose, CA USA. November v1.0

Configuring the WT-4 for Upload to a Computer (Infrastructure Mode)

HOWTO: How to configure IPSEC gateway (office) to gateway

Configuring WPA-Enterprise/WPA2 with Microsoft RADIUS Authentication

Configure an IPSec Tunnel between a Firebox Vclass & a Check Point FireWall-1

How to set up as VPN Network

How to Setup PPTP VPN Between a Windows PPTP Client and the DIR-130.

MultiSite Manager. Setup Guide

Mac OS VPN Set Up Guide

Configure IPSec VPN Tunnels With the Wizard

How To Setup Cyberoam VPN Client to connect a Cyberoam for remote access using preshared key

VPN Configuration of ProSafe VPN Lite software and NETGEAR ProSafe Router:

Step-by-Step Setup Guide Wireless File Transmitter FTP Mode

UTM - VPN: Configuring a Site to Site VPN Policy using Main Mode (Static IP address on both sites) i...

Install MS SQL Server 2012 Express Edition

intelligence at the edge of the network EdgeBOX V4.3 VPN How-To

Transcription:

HowTo: VPN with L2TP and the Windows VPN client Securepoint Security Systems Version 2007nx Release 3

Contents 1 Configuration of the appliance... 4 1.1 Setting up network objects... 4 1.2 Creating firewall rules... 5 1.3 L2TP basic settings... 6 1.4 L2TP configuration... 7 1.4.1 Configuration with the assistant... 7 1.4.2 Configuration using the layer view...10 1.5 Setting up users...15 2 Configuration of the VPN L2TP roadwarriors under Windows...16 2.1 Setting up the VPN connection...16 2.2 Configure the VPN connection settings...17 2

VPN with L2TP and the Windows VPN client A VPN connects one or several computers or networks by using a different network, e. g. the internet, as a means of transport. For instance, this could be the computer of a member of staff at their home or in a subsidiary which is linked to the network at the headquarter through the internet. For the user, the VPN looks like a normal network connection to the destination computer. The actual way of transmission is not perceived. The VPN provides the user with a virtual IPconnection which is tunneled by an actual one. The data packages transmitted via this connection are encoded at the client and decoded by the Securepoint servers - and the other way around. Target: Setting up a VPN-L2TP between the Securepoint appliance and a Windows L2TPclient. fig. 1 VPN layer 3

1 Configuration of the appliance 1.1 Setting up network objects Proceed as follows: Over Firewall select the tab Network objects. Set up the network objects as shown in the following image. fig. 2 required network objects 4

1.2 Creating firewall rules Proceed as follows: Over Firewall select the tab Rules. Create the firewall-rules as shown in the following image. fig. 3 firewall rules 5

1.3 L2TP basic settings Proceed as follows: From the main menu VPN select VPN L2TP from the selection list. fig. 4 selecting VPN L2TP The local L2TP-interface should be a free IP-address from the internal net. The L2TP- IP-addresses (L2TP address-pool) are assigned following the L2TP-interface. As authentication method you can select between Radius Server and Active Directory. With this configuration the L2TP-client can communicate with the internal net via proxy-arp function, because it is assigned an IP-address from this net upon dial-in. fig. 5 VPN L2TP - general settings fig. 6 VPN L2TP - NS/WINS settings 6

1.4 L2TP configuration This configuration can be conducted in two different methods. Either through a assistant guided configuration or a manual configuration based on a drawing layer. 1.4.1 Configuration with the assistant Proceed as follows: Click the icon VPN and select the tab VPN connections. Click the icon New. The IPSec Wizard appears. Select Roadwarrior and click Next. fig. 7 IPSec Wizard - step 1 7

Select L2TP and click Next. fig. 8 IPSec Wizard - step 2 Insert a name for the connection and select Preshared Key and enter it. Then click Next. fig. 9 IPSec Wizard - step 3 8

The assistant advises what you have to do. Complete the assistant configuration by clicking the Finish button. fig. 10 IPSec Wizard - step 4 The new connection is listed in the table in the tab VPN connections as shown in fig. 11. fig. 11 result of the configuration with the IPSec Wizard Check the status of the services. SERVICE_IPSEC and SERVICE_L2TP are required for an L2TP-connection (fig. 20). 9

1.4.2 Configuration using the layer view Proceed as follows: Over VPN select the tab VPN connections. With the mouse move the existing firewallobject from the left window onto the VPN viewport. fig. 12 darging the firewall symbol onto the layer 10

Now set up a new roadwarrior object in the left window. Click on the Notebook-Symbol on the image bar of the upper window. In the dialog Roadwarrior add the roadwarrior is set up without IP as (0.0.0.0), because this may vary all the time! Click on L2TP in the roadwarrior dialog in order to activate L2TP. fig. 13 create a roadwarrior object Now move the freshly created roadwarrior object from the left window onto the VPN viewport. fig. 14 draging the roadwarrior symbol onto the layer 11

Click on the icon Connect and on the roadwarrior object. A flag appears on the roadwarrior object with the information Please click destination object. Click on the firewall object. fig. 15 create connection between the objects on the layer Now a new dialog opens automatically: IPSec connection - accept Select the authentication method SECRET. In a default case further settings may simply be adopted. fig. 16 tab General of the dialog IPSec connection accept 12

Change to the tab firewall.foo.local. Under Local key click on the symbol (...) and enter the local key (Secret). fig. 18 enter the local key fig. 17 tab firewall.foo.local If the client-pc works behind a router (natted), the client-subnet has to be inserted as well. If the entry is to be valid for all kinds of subnets, one has to insert 0.0.0.0/0. After clicking OK the connection is established. You only have to update the connections by clicking on the icon Update. fig. 19 update the connections 13

In the following step check the status of the services. Click on the icon Applications and change to the tab Status of services. SERVICE_IPSEC and SERVICE_L2TP are required for an L2TP connection. fig. 20 checking the status of services 14

1.5 Setting up users Proceed as follows: Under Authentication click on the icon New. Set up an L2TP-user with name, login, password etc. fig. 21 adding new L2TP user Change to the tab Group Membership and activate the checkbox VPN L2TP user. Change to the tab VPN options and enter an IP-address out of the local address pool that is allocating to the user when he is connected to the firewall. fig. 22 activating VPN L2TP user fig. 23 allocate IP-address out of local address pool 15

2 Configuration of the VPN L2TP roadwarriors under Windows 2.1 Setting up the VPN connection Proceed as follows: First create a standard VPN connection with the network connection assistant. Start the assistant by clicking start Control Panel Network and Internet Connections Network Connections Create a new connection fig. 24 start the assistant fig. 25 select conecttion to a network fig. 26 select VPN connection fig. 27 insert a new for the connection fig. 28 enter IP-address or host name of the firewall connecting to fig. 29 finish assistant and create a shortcut if you want 16

HowTo: VPN with L2TP and the Windows VPN client 2.2 Configure the VPN connection settings Proceed as follows: On the dialog Connect name-of-the-connection insert your login name on the firewall and the password. Open the properties of the VPN connection, for further setup steps. Choose in the Properties Security IPSec-Settings. Put the Preshared Key (SECRET) and activate the checkbox to using it. fig. 30 insert connection data and select Properties fig. 32 insert preshared key fig. 31 change to tab Security and click IPSec settings

Under the tab Networking adjust the VPN type to L2TP IPSec VPN. In the Properties of the (TCP/IP) Protocol -> Advanced the option Use the default gateway on the remote network may also be selected in addition to that. Now you can start the IPSec-connection. fig. 33 change the VPN type fig. 34 click Advanced... fig. 35 activate the checkbox to use the default gateway 18

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information