![background image](/i/zyxel/144611/zyxel-zywall-usg-1000/h/zyxel-zywall-usg-1000-081.png)
Chapter 4 Create Secure Connections Across the Internet
ZyWALL USG 20-2000 User’s Guide
81
3
Click
Configuration > VPN > L2TP VPN
and then
Create New Object > Address
to create an
IP address pool for the L2TP VPN clients. This example uses
L2TP_POOL
with a range of
192.168.10.10 to 192.168.10.20. Click
Create New Object > User/Group
to create a user object
for the users allowed to use the tunnel. This example uses a user object named
L2TP-test
.
Enable the connection.
Set
VPN Connection
to
Default_L2TP_VPN_Connection
.
Set
IP Address Pool
to
L2TP_POOL
.
Select the authentication method (default in this example), and select the users that can use the
tunnel (
L2TP-test
in this example).
4.6.2 Configuring Policy Routing
You must also configure a policy route to let remote users access resources on the network behind
the ZyWALL.
• Set the policy route’s
Source Address
to the address object that you want to allow the remote
users to access (
LAN_1SUBNET
in this example).
• Set the
Destination Address
to the IP address pool that the ZyWALL assigns to the remote
users (
L2TP_POOL
in this example)).
• Set the next hop to be the VPN tunnel that you are using for L2TP VPN.