Manualshelf

Command Reference Guide

ManualsBrandsHP ManualsRoutersHP 3000 Router Series
1241124212431244124512461247124812491250
3Com Router 3000 Ethernet Family
Command Reference Guide
Chapter 1 L2TP Configuration Commands
3Com Corporation
1-13
Parameter
ip ip-addr: IP address of the peer end of the tunnel (LNS). Five IP addresses can be set
at most to provide LNS backup for each other.
domain-name: Domain name triggering connection requests, a case sensitive
character string with the length ranging from 1 to 30.
user-name: Full username triggering connection requests, a case sensitive character
string with the length ranging from 1 to 32.
Description
Use the start l2tp command to specify conditions triggering the local end to place calls
when it works as L2TP LAC.
Use the undo start l2tp command to delete the specified triggering conditions.
This command is used on LAC side to specify IP address of LNS; it can support several
connection request triggering conditions, specifically,
z Initiating tunnel connection request according to the user’s domain name. For
example, if domain name of user’s company is huawei.com, the user with this
domain name can be specified as a VPN user.
z Deciding whether a user is a VPN user according to its dialed number. For
example, if the number 8810188 is specified to be the special service number, the
access user who dials this number is a VPN user.
z Specifying a user to be a VPN user by directly specifying full username.
For a VPN user, the local end (LAC) will send L2TP tunnel connection request to a
certain LNS according to the configured LNS priority or order. If receiving response
from the LNS within the specified period, LAC will take it as the peer end of the tunnel.
If not, LAC will send tunnel connection request to the next LNS.
Conflicts may exist between these VPN user judgment ways. For example, LNS
address specified according to full username is 1.1.1.1, while that according to domain
name is 1.1.1.2. To avoid situations like this, a user searching order is necessary to be
specified. The system always starts a search by looking for the specified L2TP group by
full username; if finding no match, it continues the search by domain name.
Example
# Specify the users using the domain name of “huawei.com” to be VPN users, with IP
address of the L2TP access server of the headquarters being 202.38.168.1.
[Quidway-l2tp1] start l2tp ip 202.38.168.1 domain huawei.com
1.1.18 start l2tp tunnel
Syntax
start l2tp tunnel