•
Add the following registry value to this key:
•
Value Name: ProhibitIpSec
Data Type: REG_DWORD
Value: 1
•
Save your changes and restart the computer for the changes to take effect.
You must add the
ProhibitIpSec
registry value to each Windows 2000-based endpoint computer of an
L2TP or IPSec connection to prevent the automatic filter for L2TP and IPSec traffic from being created.
When the
ProhibitIpSec
registry value is set to 1, your Windows 2000-based computer does not
create the automatic filter that uses CA authentication. Instead, it checks for a local or Active Directory
IPSec policy.
Connecting to the L2TP VPN
•
Start the dial-up connection that you configured in the previous procedure.
•
Enter your L2TP VPN User Name and Password.
•
Click Connect.
•
In the connect window, enter the User Name and Password you use to connect to your dial-up
network connection.
This user name and password is not the same as your VPN user name and password.
Configuring a Windows XP Client to connect to a DFL-1000 L2TP VPN
Use the following procedure to configure a client machine running Windows XP so that it can connect to a
DFL-1000 L2TP VPN.
Configuring an L2TP VPN dial-up connection
•
Go to
Start > Settings
.
•
Click Network and Internet Connections.
•
Select Create a connection to the network of your workplace and click Next.
•
Click Virtual Private Network Connection and click Next.
•
Name the connection and click Next.
•
If the Public Network dialog box appears, choose the appropriate initial connection and click Next.
•
In the VPN Server Selection dialog, enter the external IP address or hostname of the DFL-1000 to
connect to and click Next.
•
Click Finish.
Configuring the VPN connection
•
Right click the icon that you have created.
•
Select
Properties > Security
.
•
Click Typical (recommended settings).
•
Click to select Require data encryption.
•
Click Advanced (custom settings).
•
Click Settings.
•
Click to select Challenge Handshake Authentication Protocol (CHAP).
•
Make sure none of the other settings are selected.
•
Click the Networking tab.
•
Make sure the following are selected:
DFL-1000 User’s Manual
65