R3303-HP HSR6800 Routers Layer 2 - WAN Configuration Guide
80
Task Remarks
Specify the local name of the tunnel
Configuring an LNS
Creating a VT interface Required.
Configuring the local address and
the address pool for allocation
Required.
Configuring an LNS to grant certain
L2TP tunneling requests
Required.
Configuring user authentication on
an LNS
Optional.
Configuring AAA authentication for
VPN users on an LNS
Optional.
Enabling L2TP for VPNs Optional.
Configuring support of LNS for the
IMSI or SN in PPP LCP negotiation
Optional.
Configuring L2TP connection
parameters
Configuring L2TP tunnel
authentication
Optional.
Setting the hello interval
Enabling tunnel flow control
Disconnecting tunnels by force
HSR6800 routers require no configuration to support L2TP-based EAD. The router performs EAD
authentication on L2TP clients if the IMC server distributes the isolation ACL and security ACL to it.
Otherwise, it does not perform EAD authentication.
Configuring basic L2TP capability
An L2TP group is intended to represent a group of parameters and corresponds to one VPN user or one
group of VPN users. This enables not only flexible L2TP configuration on devices, but also one-to-one and
one-to-many networking applications for LACs and LNSs. An L2TP group only has local significance.
However, you must make sure that the relevant settings of the L2TP groups on the LAC and LNS match. For
example, the local tunnel name configured on the LAC must match the remote tunnel name configured on
the LNS.
L2TP must be enabled for L2TP configuration to take effect. Tunnel names are used during tunnel
negotiation between an LAC and an LNS.
To configure basic L2TP capability:
Step Command Remarks
1. Enter system view.
system-view N/A
2. Enable L2TP.
l2tp enable Disabled by default.
3. Create an L2TP group and
enter its view.
l2tp-group group-number By default, no L2TP group exists.