Upload
others
View
5
Download
0
Embed Size (px)
Citation preview
HowtouseVPNL2TPoverIPsec
Server/ClientonTW-EAV510ACNote: 1. PleasemakesurethatbothLANsidenetworksareindifferentsubnet.2. JustsomeOSsupportL2TPTunnelauthentication,likeAndroidOS.
EnableVPNL2TPoverIPsecFunctionGotoWAN->VPN->L2TP/IPSec,EnableVPNfunction.ThenyoucanstartsetupL2TP/IPSecServerandL2TP/IPSecClientyouwillseethepageasbelow:
Note:BothServerandClientmustusethesametunnelauthenticationsecretkeyotherwisetheconnectioncannotbeestablished.
SetupL2TP/IPSecServer
AuthenticationType:Accordingtouserrequirementcanset4types,Auto/PAP/CHAP/MS-CHAPV2. EncryptionMode:OnlyworkonMS-CHAPV2Authenticationmode,youcanchooseNONE/MPPE. TunnelAuthentication:MakeitcheckedtoenableL2TPtunnelauthentication.(Optional) SecretKey:ClientneedthiskeytoconnectserverifserverenableTunnelAuthenticationSetupL2TPaccountforL2TPServer AssignedtoPeerIPAddressstartfrom:EntertheIPthatwillbeassignedtoremoteclient.PleaseavoidthispoolsameofDHCPServerPool.
LocalIPAddress:DefaultsettingsisrouterLAN’sIP,donotchangeifnotnecessary.IPSecPSK:Setuppasswordforservercertificationclient
Note:PleasepressApplybuttonifanychange.
SetupL2TP/IPSecaccount
Name:Thenameforuserprofile.Account:Enable/Disablethisaccount.Username:Thenamewillbeusedforauthentication.Password:Thepasswordwillbeusedforauthentication.PeerIP:OptionalsettingforLANtoLAN,Entertheremotenetwork’sIPaddress. PeerSubnetMask:OptionalsettingforLANtoLAN,Entertheremotenetwork’snetmask.
ClickAddbuttontoaddnewuser.Recommendupto4useraccountsforbothPPTPandL2TP/IPSec.
Remove/Edituser
MakeRemovecheckboxcheckedandclickDeleteSelectedbuttontoremoveuserorclickSavebuttontoenabledisableofuser.
SetupL2TP/IPSecClientfromRemoteAccess
Name:ThenameforL2TP/IPSecClientprofile.ServerIPAddress:PleaseinputVPNServerWANIPordomain.Username:Thenamewillbeusedforauthentication.Password:Thepasswordwillbeusedforauthentication.TunnelAuthentication:MakeitcheckedtoenableL2TPtunnelauthentication.(Optional).SecretKey:IfserverenableTunnelAuthenticationandsetupSecretKey,clientneedinputthekey.AuthenticationType:EnterthetypeofVPNserverauthentication.EncryptionMode:EntertheModeofVPNserverauthentication.DefaultGateway:Ifcheckboxchecked,VPNclientroutergatewaywillsettoVPNserverrouter.PeerIP:OptionalsettingforLANtoLAN,Entertheremotenetwork’sIPaddress. PeerSubnetMask:OptionalsettingforLANtoLAN,Entertheremotenetwork’snetmask.IPSecPSK:InputserversetupIPSecpassword.ClickAddbuttontoaddanewL2TP/IPSecClientconnection.
Note:BothServerandClientmustusethesametunnelauthenticationsecretkeyotherwisetheconnectioncannotbeestablished.
Remove/DisconnectClient
MakeRemovecheckboxcheckedandclickDeleteSelectedbuttontoremoveClientorclickConnectbuttontoconnectVPNclient.
Example1TW-EAV510ACinbelowpicleftsideisactivatedasL2TP/IPSecServerandTW-EAV510ACinbelowpicrightsideisactivatedasL2TP/IPSecClient.
RemoteAccessTW-EAV510(L2TP/IPSecServer)1. GotoWAN->VPN->L2TP/IPSec,enableVPNfunction.2. SetupL2TP/IPSecServerandpressApplybutton.3. Addnewuseraccount,don’tneedinputPeerIP/PeerSubnetMask.
ClickAddbuttontosavechanges.TW-EAV510AC(L2TP/IPSecClient)1. GotoWAN->VPN->L2TP/IPSec,enableVPNfunction,SettingL2TP/IPSecClientasbelow.
ClickAddbuttontosaveaccountsettings.2. AfterclickAddbutton,L2TP/IPSecClientTablewouldaddoneconnection,ifsetupallcorrectlyVPN
connectionshouldbeconnected.YoucanalsoclickDisconnectbuttontodisconnecttheVPNconnection.
3. GotoStatus->Device,youcancheckL2TP/IPSecConfigurationonpagebelow,WhenStatus
showsup,youcanaccesstoremotenetworknow.BelowisDeviceInfoforreference.
LANtoLANTW-EAV510(L2TP/IPSecServer)1. GotoWAN->VPN->L2TP/IPSec,enableVPNfunction.2. SetupL2TP/IPSecServerandpressApplybutton.3. Addnewuseraccount,enterremotenetwork’sIPaddressforPeerIP/PeerSubnetMask.
4. AfterpressAddbutton,L2TP/IPSecServerTablewouldaddaccountasbelow.
TW-EAV510AC(L2TPClient)1. GotoWAN->VPN->L2TP/IPSec,enabletheL2TP/IPSecVPN,SettingVPNClientasbelow.ForLAN
toLAN,youneedtoenterpeernetworkinformation.
ClickAddbuttontosaveaccountsettings.2. AfterclickAddbutton,L2TP/IPSecClientTablewouldaddoneconnection,ifsetupallcorrectlyVPN
connectionshouldbeconnected.YoucanalsoclickDisconnectbuttontodisconnecttheVPNconnection.
3. GotoStatus->Device,youcancheckL2TP/IPSecConfigurationonpagebelow,WhenStatus
showsup,youcanaccesstoremotenetworknow.BelowisDeviceInfoforreference.
Example2TW-EAV510ACinbelowpicleftsideisactivatedasL2TP/IPSecServerandusedevicesinrightsideconnecttoit.
RemoteAccessTW-EAV510(L2TPoverIPsecServer)1. GotoWAN->VPN->L2TP/IPSec,enabletheVPNfunction.2. SetupL2TP/IPSecServerandpressApplybutton.3. Addnewuseraccount,don’tneedinputPeerIP/PeerSubnetMask.4. It’snotnecessarytosetupTunnelAuthentication,ifuseTunnelAuthentication,somedevicesmaynotconnecttoserver.
WithTunnelAuthentication(OnlyAndroiddevicesupportenablethisfunction.)
iOSDevices
1. LunchSettings->VPN->AddVPNConfiguration
2. Typechoose->L2TP3. InputDescription:nameofthisconfiguration,Server:L2TP/IPsecserverrouterWANIP.,
Account:L2TP/IPsecserveraccount,Password:L2TP/IPsecserveraccountpassword,Secret:L2TP/IPsecserverIPsecPSK,thenpressDoneinup-rightcorner.
4. SlideStatusbuttonfromlefttorightandwaitdeviceconnecttoserver5. AfterconnectedVPNserversuccessfully,StatuswoulddisplayConnectedandstatusbarwould
showVPNicon.
AndroidDevices1. LunchSettings->Wireless&networks->More1 ->VPN->AddVPNprofile
2. ChooseTypetoL2TP/IPSecPSK3. InputName:nameofthisconfiguration,Serveraddress:L2TP/IPsecserverrouterWANIP.,
L2TPsecret:SecretkeyofTunnelAuthenticationforServerrouter2,IPSecpre-sharedkey:L2TP/IPsecserverIPsecPSK,thenpressSavebutton
4. PressjustcreateVPNprofile,devicewouldnoticetoinputUsername/Password,Inputcorrect
accountandpressConnect,waitdeviceconnecttoVPNserver.
1 SomeAndroiddevicesmighthavenotMoreoption,butMostdevicesVPNsettingisinWireless&networks.2 Notnecessaryneed,dependsonServer.
5. AfterconnectedVPNserversuccessfully,ProfilewoulddisplayConnectedandstatusbarwouldshowVPNicon(Likeaskey,dependsoneachAndroidOS.).
Windows10device
1. LunchControlPanel->NetworkandInternet->NetworkandSharingCenter2. PressSetupanewconnectionornetwork->Connecttoaworkplace->UsemyInternet
connection(VPN)->InputInternetaddress:L2TP/IPsecserverrouterWANIP.ThenPressCreate.
3. GotoControlPanel->NetworkandInternet->NetworkConnections,FindVPNConnectionjust
create,rightclickonthemousechooseproperties.
4. ChooseSecurity->TypeofVPNchangetoLayer2TunnelingProtocolwithIPsec(L2TP/IPsec)5. EnableAllowtheseprotocolsandcheckedauthenticationtype.6. PressAdvancedsettings->chooseUsepresharedkeyforauthenticationandinputL2TP/IPsec
serverIPsecPSKkey.
7. ChooseSettings->VPN,pressConnectandinputaccount/password,waitPCconnecttoVPN
server.
8. AfterconnectedtoVPNserver,VPNConnectionwouldshowConnected,nowyouconnectVPN
serversuccessfully.