Configuring An Lac; Configuring An Lac To Initiate Tunneling Requests For Specified Users; Configuring An Lac To Transfer Avp Data In Hidden Mode - HPE FlexNetwork MSR Series Comware 5 Layer 2 - Wan Access Configuration Manual
Hide thumbs
Also See for FlexNetwork MSR Series:
- Configuration manual (861 pages) ,
- Comware 7 layer 3 - ip services configuration manuals (554 pages) ,
- Comware 5 security configuration manual (547 pages)
Table of Contents
Advertisement
LAC and LNS match. For example, the local tunnel name configured on the LAC must match the
remote tunnel name configured on the LNS.
L2TP must be enabled for L2TP configuration to take effect. Tunnel names are used during tunnel
negotiation between an LAC and an LNS.
To configure basic L2TP capability:
Step
Enter system view.
1.
Enable L2TP.
2.
Create an L2TP group and
3.
enter its view.
Specify the local name of the
4.
tunnel.
Configuring an LAC
An LAC is responsible for establishing tunnels with LNSs for users and sends user packets to LNSs
through the tunnels. Before configuring an LAC, enable L2TP and create an L2TP group.
Configuring an LAC to initiate tunneling requests for specified
users
An LAC initiates tunneling requests only to specified LNSs for specified users. You can specify the
users to be serviced and the LNSs that will be connected. Users can be specified by their fully
qualified name or the domain name.
Up to five LNSs can be configured. The LAC initiates an L2TP tunneling request to its specified LNSs
consecutively in their configuration order until it receives an acknowledgement from an LNS, which
then becomes the tunnel peer.
To configure the LAC:
Step
Enter system view.
1.
Enter L2TP group view.
2.
Enable the device to initiate tunneling requests
3.
to one or more IP addresses for one or more
specified VPN users.
Configuring an LAC to transfer AVP data in hidden mode
With L2TP, some parameters are transferred as AVP data. To improve security, you can configure an
LAC to transfer AVP data in hidden mode—to encrypt AVP data before transmission.
To configure an LAC to transfer AVP data in hidden mode:
Command
system-view
l2tp enable
l2tp-group group-number
tunnel name name
Command
system-view
l2tp-group group-number
start l2tp { ip ip-address }&<1-5> { domain
domain-name | fullusername user-name }
260
Remarks
N/A
Disabled by default.
By default, no L2TP group exists.
Optional.
The system name of the device is
used by default.
Advertisement
Table of Contents
Troubleshooting
Need help?
Do you have a question about the FlexNetwork MSR Series and is the answer not in the manual?