Table of Contents
Advertisement
Setting Up Virtual Private Networks
Configuring L2TP tunnels for dial-in clients
Figure 11-8 shows an ISP POP MAX, acting as an LAC, communicating across the WAN with
a private network. Clients dial into the ISP POP and are forwarded across the Internet to the
private network.
Figure 11-8. L2TP tunnel across the Internet
Dial-in
clients
How the MAX creates L2TP tunnels
The dial-in client, the LAC, and the LNS establish, use, and terminate an L2TP-tunnel
connection as follows:
1
2
3
4
5
6
7
Proxy LCP and authentication support for L2TP
If a PPP client's profile is configured to initiate an L2TP tunnel, the MAX unit attempts to
open a tunnel (or reuse an existing one) following initial authentication of the connection. It
can open a tunnel after completing CLID or DNIS authentication or after authenticating the
caller's name and password. If the LAC authenticates the initial dial-in call using a name and
password, it negotiates Link Control Protocol (LCP) with the client and opens the PPP Auth
state to determine who the client is, so it can contact the appropriate LNS.
With earlier versions of the system software, when the LAC contacted the LNS for a client
connection, it sent an empty LCP Config Request packet in the data stream. When the LNS
received the packet, it restarted LCP negotiations and authenticated the client. With currently
supported proxy LCP, instead of an empty LCP Config Request, the LAC sends the LNS the
following information:
•
•
11-32
P50
LAC
Modem
RADIUS server
A client dials, over either a modem or ISDN connection, into the LAC.
On the basis of dialed number or after authentication (depending on the LAC
configuration), the LAC communicates with the LNS to establish an IP connection.
Over the IP connection, the LAC and LNS establish a control channel.
The LAC sends an Inbound Call Request to the LNS.
Depending on the LNS configuration, the client might need to authenticate itself a second
time.
After successful authentication, the tunnel is established, and data traffic flows.
When the client disconnects from the LAC, the LAC sends a Call Disconnect Notify
message to the LNS. The LAC and LNS disconnect the tunnel.
The first LCP Config Request packet received from the client.
The last LCP Config Request packet received from the client.
LNS
Internet
L2TP tunnel
MAX 6000/3000 Network Configuration Guide
Private network
Advertisement
Table of Contents
Related Manuals for Lucent Technologies MAX 6000
Related Products for Lucent Technologies MAX 6000
- Lucent Technologies MAP/100P
- Lucent Technologies Merlin Legend MLX-5
- Lucent Technologies Merlin Legend MLX-10
- Lucent Technologies MERLIN LEGEND MDW 9000
- Lucent Technologies MLC-model
- Lucent Technologies Merlin Legend MLX-10D
- Lucent Technologies Merlin Legend MLX-10DP
- Lucent Technologies Merlin Legend MLX-5D
- Lucent Technologies MERLIN LEGEND MLX Direct-Line Consoles
- Lucent Technologies MERLIN LEGEND Release 4.0 Single-Line Telephone
- Lucent Technologies Metropolis DMXplore
- Lucent Technologies MLS
- Lucent Technologies MDW 9030P
- Lucent Technologies Stinger MRT 19
- Lucent Technologies Stinger MRT 23
- Lucent Technologies MERLIN LEGEND MLX-10DPTM