Configuration Example For Lac-Auto-Initiated L2Tp Tunnel - HPE FlexNetwork MSR series Configuration Manual

Configuration example for LAC-auto-initiated L2TP tunnel

Network requirements
As shown in
LAC-auto-initiated mode. When the PPP user initiates a connection, it uses the established tunnel to
access the corporate network.
Figure 32 Network diagram
Remote host
Configuration procedure
1. Configure the LNS:
# Configure IP addresses for the interfaces. (Details not shown.)
# Create a local user named vpdnuser, set the password, and enable the PPP service.
<LNS> system-view
[LNS] local-user vpdnuser class network
[LNS-luser-network-vpdnuser] password simple Hello
[LNS-luser-network-vpdnuser] service-type ppp
[LNS-luser-network-vpdnuser] quit
# Create a PPP address pool.
[LNS] ip pool aaa 192.168.0.10 192.168.0.20
[LNS] ip pool aaa gateway 192.168.0.1
# Create Virtual-Template 1, specify its PPP authentication mode as PAP, and use address
pool aaa to assign IP addresses to the PPP users.
[LNS] interface virtual-template 1
[LNS-virtual-template1] ppp authentication-mode pap
[LNS-virtual-template1] remote address pool aaa
[LNS-virtual-template1] quit
# Configure local authentication for PPP users in ISP domain system.
[LNS] domain system
[LNS-isp-system] authentication ppp local
[LNS-isp-system] quit
# Enable L2TP, and create L2TP group 1 in LNS mode.
[LNS] l2tp enable
[LNS] l2tp-group 1 mode lns
# Configure the local tunnel name as LNS, and specify Virtual-Template 1 for receiving
tunneling requests from an LAC.
[LNS-l2tp1] tunnel name LNS
[LNS-l2tp1] allow l2tp virtual-template 1 remote LAC
# Enable tunnel authentication, and configure the authentication key as aabbcc.
[LNS-l2tp1] tunnel authentication
[LNS-l2tp1] tunnel password simple aabbcc
[LNS-l2tp1] quit
Figure 32, configure the LAC to establish an L2TP tunnel with the LNS in
10.2.0.1
LAN
10.2.0.0/16
LAC
GE1/0/1 GE1/0/1
3.3.3.1/24 3.3.3.2/24
Internet
L2TP tunnel
89
10.1.0.1
Corporate
10.1.0.0/16
LNS