Manualshelf

R3303-HP HSR6800 Routers Layer 2 - WAN Configuration Guide

ManualsBrandsHP ManualsNetwork HardwareHP HSR68xx Configure-to-Order Router Solution
81828384858687888990
83
Configuring an LNS
An LNS responds to the tunneling requests from an LAC, authenticates users, and assigns IP addresses to
users.
Before configuring an LNS, enable L2TP and create an L2TP group.
Creating a VT interface
A VT interface is intended to provide parameters for virtual access interfaces to be dynamically created
by the device, such as logical MP interfaces and logical L2TP interfaces.
After an L2TP session is established, a virtual access interface is needed for a data exchange with the
peer. An LNS can use different VA interfaces to exchange data with different LACs. You need to specify
the VT interface for receiving calls. The system will dynamically create a VA interface based on the
configuration parameters in the specified VT interface.
To create a VT interface:
Step Command Remarks
1. Enter system view.
system-view N/A
2. Create a VT interface and enter
its view.
interface virtual-template
virtual-template-number
By default, no VT interface exists.
Configuring the local address and the address pool for
allocation
After an L2TP tunnel is set up between an LAC and an LNS, the LNS needs to assign an IP address to a
VPN user. For this purpose, you can directly specify an IP address, or specify an address pool. Before
specifying an address pool, use the ip pool command in system view or ISP domain view to define the
address pool. For a VPN user to be authenticated, an IP address will be selected from the address pool
configured in ISP domain view. For a VPN user not requiring authentication, the IP address will be
selected from the global address pool defined in system view.
For details about the ip pool command, see Security Command Reference.
To configure a local address and address pool:
Step Command Remarks
1. Enter system view.
system-view N/A
2. Enter VT interface view.
interface virtual-template
virtual-template-number
N/A
3. Configure the local IP
address.
ip address ip-address { mask |
mask-length } [ sub ]
N/A
4. Configure the authentication
mode for PPP users.
ppp authentication-mode { chap |
ms-chap | pap } * [ [ call-in ]
domain isp-name ]
Optional.
By default, no authentication is
performed for PPP users.