L2TP Setup

To setup L2TP navigate to VPN > L2TP

  • Select Enable L2TP Server
  • Interface is WAN (or the same chosen for IPsec)
  • Server Address is an unused IP address in a new subnet. It MUST NOT overlap any IP in use on the firewall,e.g x.x.x.2
  • Remote Address Range is the starting IP of the clients, e.g. x.x.x.128
  • Subnet netmask is the netmask for the client connection, the server IP should be included in this subnet, e.g./24
  • Secret should be left blank, it does not appear to work, at least with the Android version tested.
  • Encryption Type: CHAP is recommended
  • L2TP DNS Servers: The firewall’s actual LAN IP, or another internal DNS server
  • RADIUS settings – if needed, use them, otherwise leave them alone
  • Save
  • Flip to the Users tab and add L2TP user accounts and passwords there
  • Now go to Firewall > Rules on the L2TP VPN tab, and add a firewall rule to pass traffic, e.g from any to any or much more restrictive if preferred.
© Copyright 2025 . All Rights Reserved. AZTCO-FW| Developed By AZTCO-FW. Powered by AZTCO.