Description:

This document describes how to set up an IKEv2 VPN connection between a LANCOM router and the LANCOM Advanced VPN Client.


Requirements:


Procedure:

1) Start the Setup Wizard on the LANCOM router in LANconfig and select the option Provide remote access (RAS, VPN).

Screenshot of the LANCOM setup wizard interface displaying various configuration options including WLC profile setup, DoubleSpot setup, remote access setup, and VoIP setup.

2) We configure an IKEv2 VPN connection.

Image displaying a configuration setup wizard interface for a LANCOM VPN, guiding users to secure remote access with the option to select an exchange mode for VPN tunnel establishment.

3) In the following dialog, select the client LANCOM Advanced VPN Client. A simplified setup procedure is available with the option 1-Click-VPN.

In the case of 1-Click-VPN, all required keys (e.g. the preshared key) are automatically created by random number generator. The wizard also will deduce most of the settings required for the VPN connection from the settings in the LANCOM router.

Image displaying the Setup Wizard interface for configuring a LANCOM Advanced VPN Client for Windows, featuring options for remote VPN client selection, ClickVPN for automated setup, and settings inference from the current device configuration.

4) Enter a name for the VPN client connection. You must also set the the address of this router to its public IP address or a DynDNS address of the LANCOM router.

Image displays a technical configuration interface for setting up a VPN connection, including fields for VPN name, public IP or FQDN access, and additional settings for remote access on a LANCOM device.

5) Choose an ip address range which will be used by all users that dial in on the LANCOM Router using this VPN connection.

The adress range only has to be defined once. When creating additional VPN connections you can choose the address range in the dropdown menu Range of IP addresses.

Screenshot of a user interface for configuring a new range of IP addresses for dial-in users.

6) In the next dialog window, click on the Browse... button to set a location to save the profile file.

Screenshot of a LANCOM VPN setup wizard interface showing options for remote access configuration, exporting profiles, and security reminders for handling VPN access data.

7) The Finish button exits the configuration wizard. The configuration is uploaded to the LANCOM router and the profile file is saved to your PC.

Screenshot of the setup wizard interface for LANCOM device, displaying options to finish or cancel network setup configurations.



Import the VPN Client profile into the LANCOM Advanced VPN Client:

1) Start the LANCOM Advanced VPN Client and open the menu Configuration → Profiles.

Screenshot of the LANCOM Advanced VPN Client user interface showing various menu options including Connection, Configuration, Log View, Help, and Profile Settings.

2) Click the button Add/Import.

Screenshot of a user interface showing options to manage profiles including add, import, edit, copy, delete, and export functions.

3) Select the option Profile import.

Screenshot of a network configuration interface showing options to connect to a corporate network via IPsec VPN and to the internet without VPN, and to import a configuration profile.

4) Enter the path to the import file (*.ini).

Screenshot of a software import file interface with options to select file type, enter the full path of the file, and buttons for 'Back' and 'Cancel'.

5) In the next dialog window, click on Next.

Screenshot of a software import profile configuration menu displaying options to select and import user profiles, with buttons for back and cancel.

6) A message is displayed after a successful profile import. Click on Finish to complete the import.

Partial view of a user interface displaying the option 'Backtows'.

7) Click on the OK button to save your settings.

A screenshot displaying a user interface for managing profiles with options to add, import, edit, copy, delete, and export profiles.

8) The VPN Client connection can now be established with a click on the Connection switch.

Image of a technical user interface showing various network settings including profile connections, statistics with data link type, speed in KBytes, and AES encryption status.


 

All LANCOM products and software versions are subject to LANCOM Software Lifecycle Management.
You can find information on our website at https://www.lancom-systems.com/products/firmware/software-lifecycle-management

© 2025 LANCOM Systems GmbH