Manualshelf

User's Manual Part 4

ManualsBrandsSonicwall ManualsElectronicsTA 170
31323334353637383940
VPN Page 53
example of a static device is a printer as it cannot obtain an IP lease dynamically. If you do not have
Block traffic through tunnel when IP spoof detected enabled, it is not necessary to enter the
Ethernet address of a device.
9. You must exclude the Static IP addresses from the pool of available IP addresses on the DHCP server
so that the DHCP server does not assign these addresses to DHCP clients. You should also exclude
the IP address used as the Relay IP Address. It is recommended to reserve a block of IP address to
use as Relay IP addresses. Click Add, and enter the Ethernet address in the Ethernet Address field.
Alert!
You must configure the local DHCP server on the remote SonicWALL to assign IP leases to these
computers.
Alert!
If a remote site has trouble connecting to a central gateway and obtaining a lease, verify that
Deterministic Network Enhancer (DNE) is not enabled on the remote computer.
Tip!
If a static LAN IP address is outside of the DHCP scope, routing is possible to this IP, i.e. two LANs.
Current DHCP over VPN Leases
The scrolling window shows the details on the current bindings: IP and Ethernet address of the bindings,
along with the Lease Time, and Tunnel Name. To edit an entry, click the Notepad icon under Configure
for that entry.
To delete a binding, which frees the IP address in the DHCP server, select the binding from the list, and
then click the Trashcon icon. The operation takes a few seconds to complete. Once completed, a
message confirming the update is displayed at the bottom of the Web browser window.
Click Delete All to delete all VPN leases.
VPN>L2TP Server
You can use Layer 2 Tunneling Protocol (L2TP) to create VPN over public networks such as the Internet.
L2TP provides interoperability between different VPN vendors that protocols such as PPTP and L2F do
not, although L2TP combines the best of both protocols and is an extension of them. L2TP is supported
on Microsoft Windows 2000 Operating System.
L2TP supports several of the authentication options supported by PPP, including Password
Authentication Protocol (PAP), Challenge Handshake Authentication Protocol (CHAP), and Microsoft
Challenge Handshake Authentication Protocol (MS-CHAP). You can use L2TP to authenticate the