beautypg.com

Draytek 2800 Series User Manual

Page 92

background image

Vigor2800 Series User’s Guide

88

PPTP

Allow the remote dial-in user to make a PPTP VPN
connection through the Internet. You should set the User
Name and Password of remote dial-in user below.

IPSec Tunnel

Allow the remote dial-in user to trigger a IPSec VPN
connection through Internet.

L2TP

Allow the remote dial-in user to make a L2TP VPN
connection through the Internet. You can select to use L2TP
alone or with IPSec. Select from below:
None- Do not apply the IPSec policy. Accordingly, the VPN
connection employed the L2TP without IPSec policy can be
viewed as one pure L2TP connection.
Nice to Have- Apply the IPSec policy first, if it is applicable
during negotiation. Otherwise, the dial-in VPN connection
becomes one pure L2TP connection.
Must- Specify the IPSec policy to be definitely applied on the
L2TP connection.

Specify CLID or Remote
VPN Gateway

You can specify the IP address of the remote dial-in user or
peer ID (should be the same with the ID setting in dial-in
type) by checking the box. Enter Peer ISDN number if you
select ISDN above (This feature is useful for i model only.).
Also, you should further specify the corresponding security
methods on the right side.

If you uncheck the checkbox, the connection type you select
above will apply the authentication methods and security
methods in the general settings.

User Name

This field is applicable when you select ISDN, PPTP or L2TP
with or without IPSec policy above.

Password

This field is applicable when you select ISDN, PPTP or L2TP
with or without IPSec policy above.

VJ Compression

VJ Compression is used for TCP/IP protocol header
compression. This field is applicable when you select ISDN,
PPTP or L2TP with or without IPSec policy above.

IKE Authentication
Method

This group of fields is applicable for IPSec Tunnels and L2TP
with IPSec Policy when you specify the IP address of the
remote node. The only exception is Digital Signature (X.509)
can be set when you select IPSec tunnel either with or without
specify the IP address of the remote node.
Pre-Shared Key - Check the box of Pre-Shared Key to
invoke this function and type in the required characters (1-63)
as the pre-shared key.
Digital Signature (X.509) – Check the box of Digital
Signature to invoke this function and select one predefined in
the X.509 Peer ID Profiles.

IPSec Security Method

This group of fields is a must for IPSec Tunnels and L2TP
with IPSec Policy when you specify the remote node.
Medium- Authentication Header (AH) means data will be
authenticated, but not be encrypted. By default, this option is
active.
High- Encapsulating Security Payload (ESP) means payload
(data) will be encrypted and authenticated. You may select