HP VPN Firewall Appliances VPN Configuration Guide
232
Table 24 L2TP tunnel information
Item Descri
p
tion
Local Tunnel ID Local ID of the tunnel.
Peer Tunnel ID Peer ID of the tunnel.
Peer Tunnel Port Peer port of the tunnel.
Peer Tunnel IP Peer IP address of the tunnel.
Session Count Number of sessions on the tunnel.
Peer Tunnel Name Peer name of the tunnel.
Client-initiated VPN configuration example
Network requirements
As shown in Figure 163, a VPN user and the corporate headquarters communicate in the following steps:
1. The user first connects to the Internet, and then initiates a tunneling request to the LNS directly.
2. After the LNS accepts the connection request, an L2TP tunnel is set up between the LNS and the
VPN user.
3. The VPN user communicates with the headquarters over the tunnel.
Figure 163 Network diagram
Configuring the VPN user
On the user host, create a virtual private network connection using the Windows operating system, or
install L2TP client software such as WinVPN Client and connect to the Internet in dial-up mode. Assign an
IP address (2.1.1.1 in this example) to the user host and then configure a route to ensure the connectivity
between the user host and the LNS (1.1.2.2).
Perform the following configurations on the user host (the configuration procedure depends on the client
software):
• Specify the VPN username as vpdnuser and the password as Hello.
• Set the Internet interface address of the security gateway as the IP address of the LNS. In this
example, the Ethernet interface on the LNS, the interface for the tunnel, has an IP address of 1.1.2.2.
• Modify the connection attributes, setting the protocol to L2TP, the encryption attribute to customized
and the authentication mode to CHAP.
Configuring the LNS
1. Configure IP addresses for interfaces. (Details not shown.)
2. Configure a route to ensure the reachability of the LNS to the user host.