|
Setting Up a Virtual Private Network (VPN) Tunnel 6-11An administrator may also set up a Windows 2000 Server as a router with aprivate IP subnet set to 98.76.54.0/C. To add DHCP Services on the Windows 2000Server, an administrator can use any IP addresses from 98.76.54.1 to98.76.54.253 inclusive. IP addresses for workstations on the private LAN side ofthe Windows 200 Server will be in the 98.76.54.xx subnet.Configuring Windows 2000 Server to Support Encryption for L2TP TunnelsMicrosoft supports encryption for both PPTP and L2TP tunnels. However, toconfigure encryption for an L2TP tunnel connecting an OCR 812 with a Windows2000 Server, you must modify your Windows 2000 Server Registry settings.To configure Windows 2000 Server Registry settings to support L2TP encryption,perform the following steps:1 Start the Registry Editor (Run Regedt32.exe).2 Locate the following Registry key:\HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\RasMan\Parameters3 On the Edit menu, select Add Value.4 In the Add Value window, specify the following Registry Value Name, Data Type,and Value:Value Name: ProhibitIpSecData Type: REG_DWORDValue: 15 Exit from the Registry Editor.6 Restart your computer (Registry changes will not take effect if you do not restartthe computer).Configuring a Cisco Router to Support Encryption for L2TP TunnelsCisco routers support encryption for both PPTP and L2TP tunnels. However, toconfigure encryption for an L2TP tunnel you must first modify the router’s defaultconfiguration settings.To configure Cisco router settings to support encryption for an L2TP tunnel,perform the following steps:1 In Cisco router configuration mode, enter the following commands to configuretunnel authentication:aaa authentication login cisco localaaa authentication ppp default localaaa authorization network default localusername password 2 In Cisco router configuration mode, enter the following commands to configurethe router as an L2TP server:
PreviousNext |