Fortinet FortiGate 4000 User Manual
Page 269
PPTP and L2TP VPN
Configuring L2TP
FortiGate-4000 Installation and Configuration Guide
269
7
In the VPN Server Selection dialog, enter the IP address or host name of the
FortiGate unit to connect to and select Next.
8
Select Finish.
To configure the VPN connection
1
Right-click the icon that you created.
2
Select Properties > Security.
3
Select Typical to configure typical settings.
4
Select Require data encryption.
5
Select Advanced to configure advanced settings.
6
Select Settings.
7
Select Challenge Handshake Authentication Protocol (CHAP).
8
Make sure that none of the other settings are selected.
9
Select the Networking tab.
10
Make sure that the following options are selected:
• TCP/IP
• QoS Packet Scheduler
11
Make sure that the following options are not selected:
• File and Printer Sharing for Microsoft Networks
• Client for Microsoft Networks
To disable IPSec
1
Select the Networking tab.
2
Select Internet Protocol (TCP/IP) properties.
3
Double-click the Advanced tab.
4
Go to the Options tab and select IP security properties.
5
Make sure that Do not use IPSEC is selected.
6
Select OK and close the connection properties window.
7
Use the registry editor (regedit) to locate the following key in the registry:
HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Rasman\
Parameters
Note: If a RADIUS server is used for authentication do not select Require data encryption.
L2TP encryption is not supported for RADIUS server authentication.
Note: The default Windows XP L2TP traffic policy does not allow L2TP traffic without IPSec
encryption. You can disable default behavior by editing the Windows XP Registry as described
in the following steps. See the Microsoft documentation for editing the Windows Registry.