Configuring an L2TP VPN Policy on the Juniper Firewall
| Knowledge Base ID: | KB4111 |
| Version: | 5.0 |
| Published: | 07 Oct 2008 |
| Updated: | 07 Oct 2008 |
| Categories: |
 Firewall/IPSec_VPN L2TP ScreenOS |
Configuring an L2TP VPN Policy on the Juniper Firewall
Solution:
This article applies to ScreenOS 5.0 and above.
To configure an L2TP VPN policy on the Juniper Firewall, perform the following steps:
Open the WebUI. For an example of how to access the WebUI, consult: KB4060 - Accessing Your NetScreen, SSG, or ISG Firewall Using the WebUI 
From the ScreenOS options menu, click Policies.
From the Policies screen, in the From drop-down menu, select Untrust. From the To drop-down menu, click to select Trust.
Click New.
From the Policies screen, in Source Address, click to select Address Book. From the Address Book drop-down menu, click to select Dial-Up VPN.
From Destination Address, click to choose New Address or Address Book. For this example, we have selected New Address, and have entered 192.168.1.50/24.
From the Service drop-down menu, click to select Any, and then from the Action drop-down menu, click to select Tunnel.
From the Tunnel VPN drop-down menu, click to select a VPN. For this example, we have selected JohnDoeIKE.
From the L2TP drop-down menu, click to select an L2TP tunnel. For this example, we have used sales_corp as the tunnel name. For more information on configuring the L2TP VPN tunnel, go to Configuring the L2TP VPN Tunnel on the Juniper Firewall.
Click to select Position at Top.
Click OK.
Troubleshooting
