Manualshelf

R3166-R3206-HP High-End Firewalls VPN Configuration Guide-6PW101

ManualsBrandsHP ManualsComputer AccessoriesHP 7100/7200 IPsec dl Module
111112113114115116117118119120
113
[LNS-l2tp1] tunnel name LNS
[LNS-l2tp1] allow l2tp virtual-template 1 remote LAC
# Enable tunnel authentication and specify the tunnel authentication password.
[LNS-l2tp1] tunnel authentication
[LNS-l2tp1] tunnel password simple aabbcc
3. User side operation
In the dial-up network window, enter vpdnuser as the username, Hello as the password.
4. Verify the configurations
# After the dial-up connection is established, the user host can get the IP address 192.168.0.2 and can
ping the private IP address of the LNS (192.168.0.1).
# On the LNS, use the display l2tp tunnel command to check the L2TP tunnels established.
[LNS] dis l2tp tunnel
Total tunnel = 1
LocalTID RemoteTID RemoteAddress Port Sessions RemoteName
1 1 1.1.2.1 1701 1 LAC
# On the LNS, use the display l2tp session command to check the L2TP sessions established.
[LNS] display l2tp session
Total session = 1
LocalSID RemoteSID LocalTID
23142 729 1
Client-initiated VPN configuration example
Network requirements
As shown in Figure 66, a VPN user accesses the corporate headquarters in the following procedure:
1. The user first accesses the Internet, and then initiates a tunneling request to the LNS directly.
2. After the LNS accepts the connection request, an L2TP tunnel is set up between the LNS and the
VPN user.
3. The VPN user communicates with the headquarters over the tunnel.
Figure 66 Network diagram for the client-initiated VPN
Configuration procedure
1. Configure the LNS
# Configure IP addresses for the interfaces. (Omitted)
# Configure the route between the LNS and the user host. (Omitted)