About L2TP Policies

When you activate Mobile VPN with L2TP, two policies are automatically created:

WatchGuard L2TP — This L2TP policy allows L2TP traffic to the Firebox.

Allow L2TP-Users — This policy allows the groups and users you configured for L2TP authentication to get access to resources on your network. By default, this policy allows access to all network resources. In Policy Manager, you can configure the allowed resources in the L2TP Setup Wizard. You can edit this policy to change the allowed resources.

The single group name L2TP-Users appears in the From list of the Allow L2TP-Users policy. Even though any other group and user names you added to the Mobile VPN with L2TP configuration do not appear in the From list, this policy does apply to all users and groups in the L2TP configuration.