Manualshelf

HP VPN Firewall Appliances VPN Configuration Guide

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve Switch xl Access Controller Module
251252253254255256257258259260
249
[LNS-l2tp1] tunnel name LNS
[LNS-l2tp1] allow l2tp virtual-template 1
2. Configure the VPN user host:
{ Configure the IP address of the user host as 2.1.1.1, and configure a route to the LNS (1.1.2.2).
{ Create a virtual private network connection by using the Windows system, or install the L2TP
client software, such as WinVPN Client.
{ Complete the following configuration procedure (the procedure depends on the client
software):
# Specify the VPN username as vpdnuser and the password as Hello.
# Specify the Internet interface address of the security gateway as the IP address of the LNS. In this
example, the Ethernet interface for the tunnel on the LNS has an IP address of 1.1.2.2.
# Modify the connection attributes, setting the protocol to L2TP, the encryption attribute to
customized and the authentication mode to CHAP.
3. Verify the configuration:
# On the user host, initiate the L2TP connection. After the connection is established, the user host
can obtain the IP address 192.168.0.2 and ping the private IP address of the LNS (192.168.0.1).
# On the LNS, use the display l2tp session command to check the established L2TP session.
[LNS-l2tp1] display l2tp session
Total session = 1
LocalSID RemoteSID LocalTID
647 1 1
# On the LNS, use the display l2tp tunnel command to check the established L2TP tunnel.
[LNS-l2tp1] display l2tp tunnel
Total tunnel = 1
LocalTID RemoteTID RemoteAddress Port Sessions RemoteName
1 5 2.1.1.1 1701 1 l2tpuser
Configuration example for LAC-auto-initiated VPN
Network requirements
As shown in Figure 172, create a virtual PPP user on the LAC and configure the LAC to initiate a tunneling
request to the LNS to establish an L2TP tunnel for the virtual PPP user. When a VPN user accesses the
corporate network, all packets between the VPN user and the corporate network are transmitted through
the L2TP tunnel.
A VPN user accesses the corporate network in the following procedure:
1. The VPN user sends a packet to the LAC through the LAN.
2. The LAC encapsulates the packet and then forwards the packet through the L2TP tunnel to the LNS.