R3303-HP HSR6800 Routers Layer 2 - WAN Configuration Guide
90
Figure 28 Network diagram
Configuration procedure
1. Configure the LAC (NAS):
# Configure IP addresses for interfaces. (Details not shown.)
# Create a local user named vpdnuser, set the password, and enable the PPP service.
<LAC> system-view
[LAC] local-user vpdnuser
[LAC-luser-vpdnuser] password simple Hello
[LAC-luser-vpdnuser] service-type ppp
[LAC-luser-vpdnuser] quit
# Configure interface Async 1/0/1.
[LAC] interface async 1/0/1
[LAC-Async1/0/1] ip address 1.1.1.1 255.255.255.0
[LAC-Async1/0/1] ppp authentication-mode chap
[LAC-Async1/0/1] quit
# Enable L2TP.
[LAC] l2tp enable
# Create an L2TP group and configure its attributes.
[LAC] l2tp-group 1
[LAC-l2tp1] tunnel name LAC
[LAC-l2tp1] start l2tp ip 1.1.2.2 fullusername vpdnuser
# Enable tunnel authentication and specify the tunnel authentication key.
[LAC-l2tp1] tunnel authentication
[LAC-l2tp1] tunnel password simple aabbcc
2. Configure the LNS:
# Configure IP addresses for the interfaces. (Details not shown.)
# Create a local user named vpdnuser, set the password, and enable the PPP service. The
username and password must match those configured on the client.
<LNS> system-view
[LNS] local-user vpdnuser
[LNS-luser-vpdnuser] password simple Hello
[LNS-luser-vpdnuser] service-type ppp
[LNS-luser-vpdnuser] quit
# Configure local authentication for the VPN user.
[LNS] domain system
[LNS-isp-system] authentication ppp local
[LNS-isp-system] ip pool 1 192.168.0.2 192.168.0.100
[LNS-isp-system] quit
# Enable L2TP.