Support Support Downloads Knowledge Base Juniper Support Portal Community

Knowledge Base

Search our Knowledge Base sites to find answers to your questions.

Ask All Knowledge Base Sites All Knowledge Base Sites JunosE Defect (KA)Knowledge BaseSecurity AdvisoriesTechnical BulletinsTechnotes Sign in to display secure content and recently viewed articles

Making an L2TP Connection From Windows XP



Article ID: KB9756 KB Last Updated: 11 Aug 2010Version: 3.0
Making an L2TP Connection From Windows XP

To make an L2TP connection using Windows XP, perform the following steps:

step1 From the Start menu, select Connect To > Show All connections


step2 In the Network Task box, select Create a New Connection


step3 From the New Connection Wizard, select Next


step4  In the Network Connection Type window, select Connect to the network at my workplace. Click Next


step5 Select Virtual Private Network Connection, then click Next


step6 Specify a name for the connection, such as Corp_VPN, click Next


step7 From the Public Network window, select:
  • Do not dial the initial connection - if using a full-time connection, such as a cable modem
  • Automatically dial this initial connection - if using a dial-up connection to access the Internet

note: For this example, we used Do not dial the initial connection.

step8 From Destination Address, enter the IP address or hostname of your Juniper Firewall's Untrust interface, and then click Next.


note: For this example, we used as the Untrust IP address.

step9 From Connection Availability, select:
  • Anyone's use - if the connection is to be available to anyone who logs on to the computer
  • My use only - to make the connection available only when you log on to the computer


note: For this example, we selected Anyone's use

step10 To finish the connection wizard, select Add a shortcut... if you want to place an icon for this connection on your desktop. Click, Finish


note: If you are prompted to connect, click No

step11 Open the new connection (for this example Corp_VPN) by either double-clicking on the desktop icon or selecting it from Start > Connect To . Click Properties


step12 On the Security Tab, select Advanced (custom settings). Click Settings


step13 In the Advanced Security Settings window, from the Data encryption drop-down menu, click to select Optional encryption (connect even if no encryption).


In the Logon security section, click to select Allow these protocols and Challenge Handshake Authentication Protocol (CHAP). Click to clear any protocols that do not apply. When done, select OK

step14 If using a pre-shared key, select IPSec Settings from the Security Tab.


Select Use pre-shared key for authentication and enter the preshared Key for this VPN. Click OK

step15 On the Networking tab, from the Type of VPN drop-down, select L2TP IPSec VPN


note: The Automatic option authenticates by using the default protocol first. In Windows XP, PPTP is the default protocol. If Windows cannot negotiate a connection by using the default protocol, Windows tries the next protocol, in this case L2TP. However, if a user is denied access when negotiating a connection using the default protocol, Windows will not try to re-negotiate using the other protocol. Meaning, if PPTP negotiations fail, L2TP will not be used to re-negotiate.

step16 Enter the Username and Password; then click Connect

note: The User name and Password matches the username and password of the L2TP user configured on the Firewall.

Comment on this article > Affected Products Browse the Knowledge Base for more articles related to these product categories. Select a category to begin.

Getting Up and Running with Junos

Getting Up and Running with Junos Security Alerts and Vulnerabilities Product Alerts and Software Release Notices Problem Report (PR) Search Tool EOL Notices and Bulletins JTAC User Guide Customer Care User Guide Pathfinder SRX High Availability Configurator SRX VPN Configurator Training Courses and Videos End User Licence Agreement Global Search