Configuring An Lac To Automatically Establish An L2Tp Tunnel - HPE FlexNetwork MSR series Configuration Manual
Comware 7 layer 2 - wan access
Hide thumbs
Also See for FlexNetwork MSR series:
- Configuration manual (861 pages) ,
- Comware 7 layer 3 - ip services configuration manuals (554 pages) ,
- Comware 5 security configuration manual (547 pages)
Table of Contents
Advertisement
•
For local AAA authentication, create a local user and configure a password for each remote
user on the LAC. The LAC then authenticates a remote user by matching the provided
username and password with those configured locally.
•
For remote AAA authentication, configure the username and password of each user on the
RADIUS/HWTACACS server. The LAC then sends the remote user's username and password
to the server for authentication.
For more information about configuring AAA authentication, see Security Configuration Guide.
To enable AAA authentication on an LAC, you also need to configure PAP or CHAP authentication for
PPP users on the user access interfaces. For information about configuring PAP or CHAP, see
"Configuring PPP and MP."
Configuring an LAC to automatically establish an L2TP
tunnel
To configure an LAC to automatically establish an L2TP tunnel, perform the following tasks:
•
Create a virtual PPP interface and configure an IP address for the interface.
•
In virtual PPP interface view, use the ppp pap or ppp chap command to configure the side to
be authenticated by PPP as follows:
Specify the PPP authentication method for the PPP user.
Configure the username and password of the PPP user.
The LNS then authenticates the PPP user. For more information, see "Configuring PPP and
MP."
•
Trigger the LAC to automatically establish an L2TP tunnel.
To configure an LAC to automatically establish an L2TP tunnel:
Step
1.
Enter system view.
2.
Create a virtual PPP interface
and enter its view.
3.
Configure the IP address of the
virtual PPP interface.
4.
Configure the peer to be
authenticated.
5.
Configure
automatically
L2TP tunnel with the LNS.
6.
(Optional.) Set the description
for the interface.
Command
system-view
interface
interface-number
•
•
See "Configuring PPP and MP."
the
LAC
to
l2tp-auto-client
establish
an
group-number
description text
virtual-ppp
Assign an IP address to the
virtual
PPP
interface.
ip address address mask
Enable
IP
address
negotiation on the virtual
PPP
interface.
ip address ppp-negotiate
l2tp-group
77
Remarks
N/A
By
default,
no
virtual
interface is created.
By default, no IP address is
configured.
N/A
By default, an LAC does not
establish an L2TP tunnel.
An L2TP tunnel automatically
established in LAC-auto-initiated
mode exists until you remove the
tunnel
by
using
the
l2tp-auto-client
or
l2tp-group
group-number
command.
By default, the description of an
interface is in the format of
interface-name
Interface,
example,
Virtual-PPP254
PPP
undo
undo
for
Hide quick links:
Advertisement
Table of Contents
Troubleshooting
Need help?
Do you have a question about the FlexNetwork MSR series and is the answer not in the manual?