Filter
Top Products
Setting Up a Virtual Private Network (VPN) Tunnel 6-11
An administrator may also set up a Windows 2000 Server as a router with a
private IP subnet set to 98.76.54.0/C. To add DHCP Services on the Windows 2000
Server, an administrator can use any IP addresses from 98.76.54.1 to
98.76.54.253 inclusive. IP addresses for workstations on the private LAN side of
the Windows 200 Server will be in the 98.76.54.xx subnet.
Configuring Windows 2000 Server to Support Encryption for L2TP Tunnels
Microsoft supports encryption for both PPTP and L2TP tunnels. However, to
configure encryption for an L2TP tunnel connecting an OCR 812 with a Windows
2000 Server, you must modify your Windows 2000 Server Registry settings.
To configure Windows 2000 Server Registry settings to support L2TP encryption,
perform the following steps:
1 Start the Registry Editor (Run Regedt32.exe).
2 Locate the following Registry key:
\HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\RasMan
\Parameters
3 On the Edit menu, select Add Value.
4 In the Add Value window, specify the following Registry Value Name, Data Type,
and Value:
Value Name: ProhibitIpSec
Data Type: REG_DWORD
Value: 1
5 Exit from the Registry Editor.
6 Restart your computer (Registry changes will not take effect if you do not restart
the computer).
Configuring a Cisco Router to Support Encryption for L2TP Tunnels
Cisco routers support encryption for both PPTP and L2TP tunnels. However, to
configure encryption for an L2TP tunnel you must first modify the router’s default
configuration settings.
To configure Cisco router settings to support encryption for an L2TP tunnel,
perform the following steps:
1 In Cisco router configuration mode, enter the following commands to configure
tunnel authentication:
aaa authentication login cisco local
aaa authentication ppp default local
aaa authorization network default local
username <username> password <password>
2 In Cisco router configuration mode, enter the following commands to configure
the router as an L2TP server: