When you activate Mobile VPN with L2TP, two policies are automatically created:
WatchGuard L2TP — This L2TP policy allows L2TP traffic to the Firebox.
Allow L2TP-Users — This policy allows the groups and users you configured for L2TP authentication to get access to resources on your network. By default, this policy allows access to all network resources.
The single group name L2TP-Users appears in the From list of the Allow L2TP-Users policy. Even though any other group and user names you added to the Mobile VPN with L2TP configuration do not appear in the From list, this policy does apply to all users and groups in the L2TP configuration.