Manualshelf

3Com Switch 8800 Family IPsec Module Configuration and Command reference Guide

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve 8116fl Redundant Switch Fabric Module
111112113114115116117118119120
118 CHAPTER 8: CONFIGURATION OF L2TP
These configurations are optional on LNS side.
Perform the following configuration in L2TP group view.
By default, local name is the hostname of the security gateway.
Setting Tunnel
Authentication and
Password
As needed, a user can decide whether to start Tunnel authentication before
creating Tunnel connection. Tunnel authentication request can be sent by either
LAC side or LNS side. If one end of a Tunnel starts Tunnel authentication, the other
end must also start Tunnel authentication in order to set up the Tunnel connection.
In addition, both ends must use the same password, which cannot be void.
Otherwise, the local end will disconnect the Tunnel automatically. If Tunnel
authentication is disabled on both ends, the consistency of password will be
insignificant.
These configurations are optional on LNS side.
Perform the following configuration in L2TP group view.
By default, Tunnel authentication is enabled, with the password being null. For the
sake of Tunnel security, you are not recommended to disable Tunnel
authentication.
Setting Transfer Mode
of AVP Data
AVP is adopted in L2TP protocol to move and negotiated some attribute
parameters of L2TP. By default, AVP is transferred in plain text. For security, users
can hide these AVP in transmission by using the following configuration. The
function of hidden VAP only works when both of the two ends use Tunnel
authentication.
These configurations are optional on LNS side.
Perform the following configuration in L2TP group view.
Tabl e 107 Set local name
Operation Command
Set local name tunnel name name
Restore the default value of local name undo tunnel name
Tabl e 108 Set Tunnel authentication and authentication password
Operation Command
Start Tunnel authentication tunnel authentication
Disable Tunnel authentication undo tunnel authentication
Set a password for Tunnel authentication tunnel password { simple | cipher } password
Remove the password for Tunnel
authentication
undo tunnel password
Tabl e 109 Set the transfer mode of AVP data
Operation Command
Configure to transfer AVP data in the hidden mode tunnel avp-hidden