Applicable: Version 9410 onwards
You can use Layer 2 Tunneling Protocol (L2TP) to create VPN tunnel over public networks such as the Internet. For authentication, currently Cyberoam supports only Password Authentication Protocol (PAP) algorithm.
Procedure outlines how to configure Cyberoam as a L2TP server and create L2TP connection from Web Admin console:
Step 1. Configure default L2TP setting from VPN ® L2TP Configuration
- IP address selected in “Local IP Address” field will be assigned to L2TP server
Specify IP address range. L2TP clients will be assigned IP address from the specified range.
Specify DNS and alternate DNS server IP address
Specify WINS and alternate WINS server IP address
Click “Save” button to save the details
Step 2. Define L2TP Users from VPN ® L2TP Configuration
Click “Add Users” button to define users.
Step 3: Create policy from VPN ® Policy ® Create Policy with the following values:
Policy Name: l2tp_policy
Using Template: None
Keying Method: Automatic
Allow Re-keying: No
Pass Data In Compressed Format: Yes
Perfect Forward Secrecy (PFS): No
Key life: 3600 secs
Action When Peer Is Not Active: Clear
Change other values as per your requirements.
 Step 4. Create L2TP Connection from VPN ® L2TP Connection ® Create Connection with the following values:
Name: branch_1
Policy: l2tp_policy (created in step 3)
Action on Restart: Active
Authentication Type: Preshared key
Preshared key: specify as per your requirement
Local server: select WAN IP address of Cyberoam
Local ID: specify as per your requirement
Change other values as per your requirements.
Step 5. Activate connection from VPN ® L2TP Connection ® Manage Connection and click  under Connection Status against each connection
 under Connection Status indicates that the connection is successfully activated. Once the connection is activated, L2TP client can establish the connection.
Refer to Configure MS Windows XP VPN Client for L2TP connection to configure L2TP connection on MS Windows XP VPN Client
Document version: 2.0-28/05/2008
| 
