L2TP/IPSec and PPTP on Mac OS X
Posted by Uli Brügmann on 25 February 2013 12:16 PM
L2TP (Layer 2 Tunneling Protocol) with IPSec (Internet Protocol Security) and PPTP (Point to Point Tunneling Protocol) are VPN protocols for devices like Smartphones and Tablets as well as for operating systems like, in this case, Mac OS. Both protocols are already built in and do not need any additional software - but you should know, that PPTP has already been compromised and therefore should only be used, if none of the other options (L2TP/IPSec, OpenVPN or the CyberGhost client) is available.
Visit your CyberGhost VPN online account.
Log-in with your user data and click in the left sided menu on the entry 'Smart Phone, Tablets & Other Devices'.
Now click on 'Other Devices'.
Specify the protocol you want to use:
A L2TP or PPTP connection can naturally just be configured with exactly one server address. So the next thing to do is to choose the country you want to surf from (the server inside this country will be chosen automatically by CyberGhost as the most convenient server available).
Now chose your platform, 'Mac OS' in this case.
Once done, note down the following data, which you will need to configure your L2TP or PPTP connection:
You start your Mac OS X L2TP/IPSec configuration by first moving to 'System Preferences' and then 'Network'.
In the next window click on the '+' sign in the lower left corner.
Now, select 'VPN'.
In the list of 'Interfaces', choose 'L2TP over IPSec' (or PPTP) as the 'VPN Type' and type in a name for your connection in the 'Service Name' field, e.g. 'VPN (L2TP)'. 'CyberGhost VPN' might come in handy as well ;-), but you might also want to choose a description or name which reflects the country of the server you want to surf from (e.g. ‘CyberGhost VPN US’).
Lastly, click on 'Create'.
Now mark the new entry in your list of networks on the left side, enter the server address (e.g. 'us.l2tp.cyberghostvpn.com' for a L2TP connection or 'us.pptp.cyberghostvpn.com' for PPTP connection) and your user name which is your usual CyberGhost account name, and click on 'Authentication Settings'.
Activate the option 'Password' (if not already highlighted) and enter the password that has been generated for you in your online account. DO NOT use your regular account password.
Furthermore you need to type in a 'Shared Secret' which is the ‘Secret Key/PSK' you also noted before. In case of a PPTP connection this part is missing in the authentication dialog, for here you don't need a secret key.
Click on 'OK' to validate your settings.
Now open the 'Advanced' section on the lower right side of the settings window.
On the 'Options' tab you make sure that all three options under 'Session' are activated. The first ones already are, the third one, 'Send all traffic over VPN', needs to be checked by you. Click on 'OK' to leave the dialog.
Again back in the settings window, check the 'Show VPN status in the menu bar' and click on 'Apply'.
When done you now should see your new VPN connection in the menu bar of your MAC.
To connect to your CyberGhost L2TP/IPSec or PPTP based VPN, either click on 'Connect' in the 'Network' window ...
... or use the respective entry in the menu bar:
If you want to have a L2TP/IPSec or PPTP VPN connection for each country, CyberGhost operates server in, please repeat all steps for each of the other addresses CyberGhost provides you with, when choosing the country.