Configuring the L2TP VPN Default Settings on the Juniper Firewall
| Knowledge Base ID: | KB4110 |
| Version: | 5.0 |
| Published: | 07 Oct 2008 |
| Updated: | 07 Oct 2008 |
| Categories: |
 Firewall/IPSec_VPN L2TP ScreenOS |
Configuring the L2TP VPN Default Settings on the Juniper Firewall
Solution:
This article applies to ScreenOS 5.0 and above.
To configure the L2TP VPN default settings on the Juniper Firewall, perform the following steps:
If L2TP/Xauth Remote settings are not configured, the L2TP VPN default settings will be used. For more information on configuring an L2TP over IPSec user, go to Configuring an L2TP over IPSec user on the Juniper Firewall.
Open the WebUI. For an example of how to access the WebUI, consult: KB4060 - Accessing Your NetScreen, SSG, or ISG Firewall Using the WebUI 
From the ScreenOS options menu, click VPNs, select L2TP, and then click Default Settings.
From the Default Settings screen, from the IP Pool Name drop-down menu, click to select global, and then from the PPP Authentication drop-down menu, click to select CHAP. For more information on configuring an L2TP IP pool, go to Configuring an L2TP IP Pool on the Juniper Firewall.
DNS Primary Server IP, DNS Secondary Server IP and WINS server setting values are optional, and are not required for the L2TP tunnel to work. If DNS and/or WINS settings are set, they will be pushed down to the L2TP PC client. For this example, for the DNS Primary Server IP, we have entered 210.11.40.3, and for the DNS Secondary Server IP, we have entered 210.11.50.2.
Click Apply.
Troubleshooting
