1. Manuals
  2. Brands
  3. Allied Telesis Manuals
  4. Network Router
  5. AR Router
  6. Configuration

L2Tp Tunnel (With Sa Encrypt.), Firewall And Internet - Allied Telesis AR Router Configuration

Ar router series
Hide thumbs
Table of Contents

Advertisement

Helpful Scripts
6.2. L2TP Tunnel (with SA Encrypt.), Firewall and
Internet
Site A
CentreCOM AR300
A ccess Router
192.168.10.0
Note: Be aware that with many Internet Providers it may be more suitable to turn LQR (link quality reporting) off on PPP
links, and instead use LCP Echo Request and Echo Reply messages to determine link quality (echo=on). Simply add
'lqr=off echo=on' to the PPP creation command.
Router A (Router B, reverse IP addresses as per diagram above)
#
# L2TP Configuration
enable l2tp
enable l2tp server=both
add l2tp call="tunnel" rem="tunnel" ip=222.222.222.1 ty=virtual prec=in
set l2tp call="tunnel" pass=secret
set l2tp pass=secret
#
# ppp configuration
# Note: Tunnel is PPP10
create ppp=0 over=syn0
create ppp=10 over=tnl-tunnel idle=999999999
# SA configuration
#Note: Use Section 1.5 to enable system security and generate an Encryption Key of type DES on router
#A and B
create sa=1 spi=999 enckey1=1
add sa=1 member=local ip=192.168.10.0 mask=255.255.255.0
add sa=1 member=remote ip=192.168.20.0 mask=255.255.255.0
#
# IP
#
enable ip
Add ip int=eth0 ip=192.168.10.1 mask=255.255.255.0
Add ip int=ppp0 ip=200.200.200.1
add ip int=ppp10 ip=192.168.1.1
add ip rou=0.0.0.0 next=0.0.0.0 int=ppp0
add ip rou=192.168.20.0 next=0.0.0.0 int=ppp10
add ip sa=1 int=ppp10
#
# Firewall
# To enable out going ping see example 5.1.1
enable firewall
create firewall policy="main"
add firewall policy="main" int=eth0 type=private
add firewall policy="main" int=ppp10 type=private
add firewall policy="main" int=ppp0 type=public
add firewall poli="main" nat=enhanced int=eth0 gblin=ppp0 gblip=200.200.200.1
add fire poli=main ru=1 int=ppp0 action=allow ip=200.200.200.1 proto=udp port=1701
set fire poli=main ru=1 gblip=200.200.200.1 gblp=1701 remoteip=222.222.222.1
Helpful Scripts
Revision 5.8.7; 5 April 2001
200.200.200.1
192.168.1.1
LAN
WAN
SYSTEM
Internet
Access
222.222.222.1
V irtual Tunnel
192.168.1.2
Site B
CentreCOM AR300
Access Router
LAN
WAN
SYSTEM
192.168.20.0
Page
30

Advertisement

Table of Contents
loading

Related Manuals for Allied Telesis AR Router

Related Content for Allied Telesis AR Router

This manual is also suitable for:

Ar router series

Table of Contents