R3166-R3206-HP High-End Firewalls VPN Configuration Guide-6PW101

115

# On the LNS, use the display l2tp tunnel command to check the L2TP tunnel established.

[LNS-l2tp1] display l2tp tunnel

Total tunnel = 1

LocalTID RemoteTID RemoteAddress Port Sessions RemoteName

1 5 2.1.1.1 1701 1 l2tpuser

L2TP multi-domain application configuration example

Network requirements

Multiple enterprises share an LNS. Users of different enterprises access their corporate servers through

L2TP VPDNs.

Host A is a user of enterprise 1, which has the domain name of aaa.net.

Host B is a user of enterprise 2, which has the domain name of bbb.net.

Figure 67 Network diagram for L2TP multi-domain application

Configuration procedure

1. Configure the LAC

In this example, Ethernet 1/1 and Ethernet 1/3 on the LAC are both user access interfaces. The IP

address of Ethernet 1/2 through which the LAC connects to the tunnel is 1.1.2.1, and the IP address of

GigabitEthernet 0/1 through which the LNS connects to the tunnel is 1.1.2.2.

# Create two local users, set the passwords, and enable PPP service.

<LAC> system-view

[LAC] local-user vpdn1

[LAC-luser-vpdn1] password simple 11111

[LAC-luser-vpdn1] service-type ppp

[LAC-luser-vpdn1] quit

[LAC] local-user vpdn2

[LAC-luser-vpdn2] password simple 22222

[LAC-luser-vpdn2] service-type ppp

[LAC-luser-vpdn2] quit

# Configure local authentication for the users.

[LAC] domain aaa.net

[LAC-isp-aaa.net] authentication ppp local

[LAC-isp-aaa.net] quit