1. Create IP Pool for dialup client.
Objects => IP Pools => New
2. Create IKE User account.
Objects => Users => Local => New
3. Create IKE Group and add IKE user as member.
Objects => Users => Local Groups => New
4. Create Xauth user account for dialup user authentication.
Objects => Users => Local => New
You can configure different IP Pools for dialup users by configuring L2TP/Xauth Remote Settings with different IP Pool profile. Or, you can have same IP Pool settings by setting Xauth Settings under VPNs => AutoKey Advance => Xauth Settings
5. Create Xauth Group and add Xauth user account as member.
Objects => Users => Local Groups => New
6. Create VPN Gateway.
VPNs => AutoKey Advance => Gateway => New
Select IKE Group as Dialup user Group and click Advanced for detail configuration.
7. Configure the Advanced page for VPN Phase1 authentication and encryption method.
Click OK to finish the configuration.
You can enable NAT-Traversal if you have NAT device between server and client. Also, you can enable DPD to detect the VPN connection status.
8. Click
