Manualshelf

3Com Switch 8800 Family IPsec Module Configuration and Command reference Guide

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve 8116fl Redundant Switch Fabric Module
341342343344345346347348349350
346 CHAPTER 20: L2TP CONFIGURATION COMMANDS
Example
# Enable the L2TP multi-domain function on the security gateway (the LNS side).
[SW8800] l2tpmoreexam enable
mandatory-chap Syntax
mandatory-chap
undo mandatory-chap
View
L2TP group view
Parameter
None
Description
Use the mandatory-chap command to force LNS to perform CHAP
authentication again with the client.
Use the undo mandatory-chap command to disable CHAP re-authentication.
By default, CHAP re-authentication is not performed.
After LAC performs agent authentication on clients, LNS can perform
authentication on them again for enhancing security. If the mandatory-chap
command is used, each VPN client whose tunnel connection is initialized by access
server will undergo authentication both on access server side and on LNS side.
Some PPP clients may not support the second authentication. In this case, local
CHAP authentication will fail.
Related command: mandatory-lcp.
Example
# Perform mandatory CHAP authentication.
[SecBlade VPN-l2tp1] mandatory-chap
mandatory-lcp Syntax
mandatory-lcp
undo mandatory-lcp
View
L2TP group view
Parameter
None
Description
Use the mandatory-lcp command to allow LNS and client to renegotiate Link
Control Protocol (LCP) between them.