HP VPN Firewall Appliances VPN Command Reference

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve Switch xl Access Controller Module

121

122

123

124

125

126

127

128

129

130

116

When an LAC detects a VPN user, it initiates an L2TP tunneling request to LNSs one by one in their

configuration order until it receives the acknowledgement of an LNS, which is considered the tunnel peer.

Examples

# Configure the device to initiate L2TP tunneling requests to LNS 202.1.1.1 for users in domain

aabbcc.net.

<Sysname> system-view

[Sysname] l2tp-group 1

[Sysname-l2tp1] start l2tp ip 202.1.1.1 domain aabbcc.net

tunnel authentication

Use tunnel authentication to enable the L2TP tunnel authentication function.

Use undo tunnel authentication to disable the L2TP tunnel authentication function.

Syntax

tunnel authentication

undo tunnel authentication

Default

L2TP tunnel authentication is enabled.

Views

L2TP group view

Default command level

2: System level

Usage guidelines

Generally, authentication is required at both ends of a tunnel for the sake of security. However, you can

disable the authentication when you check network connectivity or you have to receive tunneling requests

from unknown tunnel peers.

Examples

# Disable L2TP tunnel authentication.

<Sysname> system-view

[Sysname] l2tp-group 1

[Sysname-l2tp1] undo tunnel authentication

tunnel avp-hidden

Use tunnel avp-hidden to enable transferring AVP data in hidden mode.

Use undo tunnel avp-hidden to restore the default.

Syntax

tunnel avp-hidden

undo tunnel avp-hidden

Default

AVP data is transferred over the tunnel in plain text mode.