R3166-R3206-HP High-End Firewalls VPN Configuration Guide-6PW101
117
[LNS] local-user vpdn2
[LNS-luser-vpdn2] password simple 22222
[LNS-luser-vpdn2] service-type ppp
[LNS-luser-vpdn2] quit
# Specify the IP address of GigabitEthernet 0/1 through which the LNS connects to the tunnel as 1.1.2.2.
[LNS] interface gigabitethernet 0/1
[LNS-GigabitEthernet0/1] ip address 1.1.2.2 255.255.255.0
[LNS-GigabitEthernet0/1] quit
# Create two address pools.
[LNS] domain aaa.net
[LNS-isp-aaa.net] authentication ppp local
[LNS-isp-aaa.net] ip pool 1 10.0.1.10 10.0.1.100
[LNS-isp-aaa.net] quit
[LNS] domain bbb.net
[LNS-isp-bbb.net] authentication ppp local
[LNS-isp-bbb.net] ip pool 1 10.0.2.10 10.0.2.100
[LNS-isp-bbb.net] quit
# Create two virtual interface templates.
[LNS] interface virtual-template 1
[LNS-Virtual-Template1] ip address 10.0.1.1 255.255.255.0
[LNS-Virtual-Template1] remote address pool 1
[LNS-Virtual-Template1] ppp authentication-mode chap domain aaa.net
[LNS-Virtual-Template1] quit
[LNS] interface virtual-template 2
[LNS-Virtual-Template2] ip address 10.0.2.1 255.255.255.0
[LNS-Virtual-Template2] remote address pool 1
[LNS-Virtual-Template2] ppp authentication-mode chap domain bbb.net
[LNS-Virtual-Template2] quit
# Create two L2TP groups.
[LNS] l2tp-group 3
[LNS-l2tp3] tunnel name LNS
[LNS-l2tp3] tunnel authentication
[LNS-l2tp3] allow l2tp virtual-template 1 remote LAC-1 domain aaa.net
[LNS-l2tp3] tunnel password simple 12345
[LNS-l2tp3] quit
[LNS] l2tp-group 4
[LNS-l2tp4] tunnel name LNS
[LNS-l2tp4] tunnel authentication
[LNS-l2tp4] allow l2tp virtual-template 2 remote LAC-2 domain bbb.net
[LNS-l2tp4] tunnel password simple 12345
If RADIUS authentication is required on the LNS, modify the AAA configurations as needed.
3. Configure the users
Create a dial-up connection on each host.
• On Host A, enter vpdn1@aaa.net as the username and 11111 as the password in the dial-up
terminal window.