Configure Microsoft® Windows XP** Virtual Private Network (VPN) client interoperability with NAT-T support 16
The configuration starts here and ends on page 19
Note: To understand the generic address names below, please refer to the diagram on page 2. Comments
are indicated in the script below using the # symbol.
# An optional help file is available: http://www.alliedtelesyn.co.nz/support/
updates/help.html
set help=450-261a.hlp
set system name="IPSec Gateway"
# The command below shows the Security Officer inactive timeout delay. The
default is 60 seconds. During setup you may decide to use 600 seconds.
set user securedelay=600
add user=secoff pass=<your password> privilege=securityOfficer login=yes
set user=secoff description="Security Officer Account"
del user=manager
# The incoming L2TP calls will be CHAP authenticated. They may be authenticated
against the router's user database as configured below, or against a RADIUS
Server if configured. You also have the option of assigning individual
addresses to individual users using the router user database or your Radius
server. IP addresses defined in the user database take precedence over the IP
pool addresses.
add user=dialin1 password=friend1 login=no ip=192.168.8.50
add user=dialin2 password=friend2 login=no
add user=dialin3 password=friend3 login=no ip=192.168.8.51
add user=dialin4 password=friend4 login=no
# If RADIUS server support is needed, use a line such as this:
# add radius server=<your RADIUS server address> secret=<your secret key>
# All dynamic incoming L2TP calls will associate with this PPP template as
indicated below.
create ppp template=1 bap=off ippool="myippool" authentication=chap echo=30
lqr=off
# PPP may need to give out the site's private DNS server address so the client
can do dns lookups
set ppp dnsprimary=<your private DNS server address, if applicable>
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Comentários a estes Manuais