MSM7xx Controllers Configuration Guide v6.4.0
Configure L2TP server for wireless client VPN
1. On the page Controller >> VPN > L2TP server enable L2TP over IPSec configuration - LAN
port. (On the MSM720, replace LAN port with Access network.)
2. Either select X.509 certificates and install an X.509 security certificate (see “IPSec certificates”
(page 381)), or specify a Preshared key.
NOTE: The VPN client running on the wireless device must also be configured with a matching
X.509 certificate, or the Preshared key specified here.
3. Set Address source to VPN address pool.
See the online help for option descriptions.
Configure PPTP server for wireless client VPN
1. On the page Controller >> VPN > PPTP server enable PPTP server configuration - LAN port.
(On the MSM720, replace LAN port with Access network.)
2. Set Allocate addresses from to VPN address pool. See the online help for option descriptions.
VPN address pool
When securing wireless client sessions with VPNs, it is typically necessary to provide an IP address
to each client. To define a pool of addresses for this purpose, follow this procedure.
1. Select Network > Address allocation.
2. In VPN address pool, for Address allocation select either Use static IP addresses or Use external
DHCP server.
• For Use static IP addresses, define a sequential pool of addresses by specifying the Starting
IP address and Max connections. For example a Starting IP address of 7.1.1.2 and a
Max connections of 50, will yield a pool of IP addresses in the range 7.1.1.2 through
7.1.1.51.
510 Working with VPNs