Configuring The Local Address And The Address Pool For Allocation; Configuring An Lns To Grant Certain L2Tp Tunneling Requests - HPE FlexNetwork MSR Series Comware 5 Layer 2 - Wan Access Configuration Manual
Hide thumbs
Also See for FlexNetwork MSR Series:
- Configuration manual (861 pages) ,
- Comware 7 layer 3 - ip services configuration manuals (554 pages) ,
- Comware 5 security configuration manual (547 pages)
Table of Contents
Advertisement
Configuring the local address and the address pool for
allocation
After an L2TP tunnel is set up between an LAC and an LNS, the LNS needs to assign an IP address
to a VPN user. For this purpose, you can directly specify an IP address, or specify an address pool.
Before specifying an address pool, use the ip pool command in system view or ISP domain view to
define the address pool. For a VPN user to be authenticated, an IP address will be selected from the
address pool configured in ISP domain view. For a VPN user not requiring authentication, the IP
address will be selected from the global address pool defined in system view.
For details about the ip pool command, see HPE FlexNetwork MSR Router Series Comware 5
Security Command Reference.
To configure a local address and address pool:
Step
Enter system view.
1.
Enter VT interface view.
2.
Configure the local IP
3.
address.
Configure the authentication
4.
mode for PPP users.
Specify the address pool for
5.
allocating an IP address to a
PPP user, or assign an IP
address to the user directly.
Configuring an LNS to grant certain L2TP tunneling requests
When receiving a tunneling request, an LNS determines whether to grant the tunneling request by
checking whether the tunnel name of the LAC matches the one configured, and determines the VT
interface to be used to create the VA interface.
The start l2tp command and the allow l2tp command are mutually exclusive. Configuring one of
them automatically disables the other one.
The LAC side tunnel name configured on the LNS must be consistent with the local tunnel name
configured on the LAC.
To configure an LNS to grant certain L2TP tunneling requests:
Step
Enter system view.
1.
Enter L2TP group view.
2.
Command
system-view
interface virtual-template
virtual-template-number
ip address ip-address { mask |
mask-length } [ sub ]
ppp authentication-mode
{ chap | ms-chap | pap } *
[ [ call-in ] domain isp-name ]
remote address { pool
[ pool-number ] | ip-address }
Command
system-view
l2tp-group group-number
264
Remarks
N/A
N/A
N/A
Optional.
By default, no authentication is
performed for PPP users.
Optional.
By default, address pool 0 (the
default address pool) is used.
Remarks
N/A
N/A
Advertisement
Table of Contents
Troubleshooting
Need help?
Do you have a question about the FlexNetwork MSR Series and is the answer not in the manual?