Add a remote access connection

  1. Go to VPN > L2TP (remote access) and click Add.
  2. Enter a name.
  3. Specify the general settings:
    OptionDescription
    Policy IPsec profile to use for the traffic.
    Gateway type Action to take when the VPN service or device restarts.

    Disable Keep the connection disabled until the user activates it.

    Respond only Keep the connection ready to respond to any incoming request.
  4. Specify authentication settings.
    OptionDescription
    Authentication type Authentication to use for the connection.

    Preshared key Authenticate endpoints using the secret known to both endpoints.

    Digital certificate Authenticate endpoints by exchanging certificates (either self-signed or issued by a certificate authority).
  5. Specify local network details.
    OptionDescription
    Local WAN port WAN port, which acts as the endpoint for your tunnel.
    Local ID For preshared key, select an ID type and type a value. DER ASN1DN (X.509) is not acceptable.
  6. Specify remote network details.
    OptionDescription
    Remote host IP address or hostname of the remote endpoint.(To specify any IP address, type “*”.)
    Allow NAT traversal Enable NAT traversal if a NAT device exists between your endpoints, that is, when the remote peer has a private or non-routable IP address.
    Remote subnet Remote networks to which you want to provide access.
    Remote ID For preshared key, select an ID type and type a value. DER ASN1DN (X.509) is not acceptable.
  7. Specify quick mode selectors.
    OptionDescription
    Local port Port that the local peer uses for TCP or UDP traffic.(To specify any port, type “*”.)
    Remote port Port that the remote peer uses for TCP or UDP traffic.(To specify any port, type “*”.)
  8. Specify advanced settings.
    OptionDescription
    Disconnect when tunnel is idle Disconnect idle clients from the session after the specified time.
    Idle session time interval Time, in seconds, after which idle clients will be disconnected.
  9. Click Save.