Configure and Use L2TP on Windows 8
You can use the Windows 8 VPN client to make an L2TP VPN connection to a Firebox.
Configure the L2TP Connection
To prepare a Windows 8 computer to make an L2TP VPN connection, you must configure the L2TP connection in the network settings.
The exact steps could be slightly different, depending on your Control Panel view, and your existing configuration.
- In the Windows 8 Start page, type control panel. Click Control Panel in the search results.
- In Control Panel, click Network and Internet.
- In the right pane, click Network and Sharing Center.
The Network and Sharing Center appears.
- Select Set up a new connection or network
The New Connection Wizard starts.
- Click Connect to a workplace and click Next.
The Connect to a workplace page appears.
- If your computer has an existing workplace connection, select No, create a new connection and click Next.
The How do you want to connect page appears.
- Click Use my Internet connection (VPN).
The Type the Internet address to connect to page appears.
- In the Internet address text box, type the hostname or IP address of the Firebox external interface.
- In the Destination name text box, type a name for the Mobile VPN (such as "L2TP to XTM").
- Click Create.
The new connection is added to the Connections list.
- In the Connections list, right click the connection name.
- Select View Connection Properties.
- The General tab contains the hostname or IP address you provided in the New Connection Wizard. You do not need to change anything on this tab unless the IP address of your Firebox changes.
- Select the Options tab.
- (Optional) If you do not want the Connect dialog box to provide a text box where the user can type a domain name, clear the Windows logon domain check box.
When this check box is cleared, the Connect dialog box asks only for a user name and password.
- (Optional) To enable software compression, click PPP Settings. Select the Enable software compression check box.
- Select the Security tab.
- From the Type of VPN drop-down list, select Layer 2 Tunneling Protocol with IPsec (L2TP/IPSec).
- From the Data encryption drop-down list, select Require encryption.
- Select Microsoft CHAP Version 2 as the only allowed protocol.
- Click Advanced settings.
The Advanced Properties dialog box appears.
- If Mobile VPN with L2TP on the Firebox is configured to use a pre-shared key as the IPSec credential method:
- Select Use pre-shared key for authentication.
- In the Key text box, type the pre-shared key for this tunnel. The pre-shared key must match the pre-shared key configured on the Firebox Mobile VPN with L2TP IPSec settings.
- If Mobile VPN with L2TP on the Firebox is configured to use a certificate as the IPSec credential method:
- Select Use certificate for authentication.
- Make sure the Verify the Name and Usage attributes of the servers certificate check box is selected.
- Make sure you have imported the certificate to the client device. For more information, see Import a Certificate on a Client Device
- Click OK.
- Do not change the default settings on the Networking tab.
- Click OK.
Start the L2TP Connection
The name of the VPN connection is the destination name you used when you configured the L2TP connection on the client computer. The user name and password refers to one of the users you added to the L2TP-Users group. For more information, see About L2TP User Authentication.
Before you begin, make sure the client computer has an active connection to the Internet.
- From the Windows 8 Start page, move the mouse to the lower right corner of the screen to see the charm menu.
- Select Settings.
- Select Network.
The Connections list appears.
- In the Connection list, select the name of this VPN connection you created. Click Connect.
The Connect page appears.
- Type your user name and password.
- Click OK.
For information about how to specify the non-default authentication server when you connect, see Connect from an L2TP VPN Client.