HP VPN Firewall Appliances VPN Configuration Guide

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve Switch xl Access Controller Module

261

262

263

264

265

266

267

268

269

270

255

[LNS-l2tp4] tunnel password simple 12345

If RADIUS authentication is required on the LNS, modify the AAA configurations as needed. For

AAA configuration details, see Access Control Configuration Guide.

3. Configure the users:

Create a dial-up connection on each host:

{ On Host A, enter vpdn1@aaa.net as the username and 11111 as the password in the dial-up

terminal window.

{ On Host B, enter vpdn2@aaa.net as the username and 22222 as the password in the dial-up

terminal window.

4. Verify the configuration:

# After Host A establishes a dial-up connection with enterprise 1, Host A obtains the IP address

10.0.1.10 and can ping the private address of the LNS (10.0.1.1).

# After Host B establishes a dial-up connection with enterprise 2, Host B obtains the IP address

10.0.2.10 and can ping the private address of the LNS (10.0.2.1).

# On the LNS, use the display l2tp session command to check the established L2TP sessions.

[LNS-l2tp1] display l2tp session

Total session = 2

LocalSID RemoteSID LocalTID

17345 4351 1

23914 10923 2

# On the LNS, use the display l2tp tunnel command to check the established L2TP tunnels.

[LNS-l2tp1] display l2tp tunnel

Total tunnel = 2

LocalTID RemoteTID RemoteAddress Port Sessions RemoteName

1 1 1.1.2.1 1701 1 LAC-1

2 2 1.1.2.1 1701 1 LAC-1

Complicated network application

A security gateway can simultaneously serve as an LAC and an LNS. Additionally, it can support more

than one incoming call. If memory and physical lines are enough, L2TP can receive and make multiple

calls at the same time. For such a complicated network, you can see through the previous configuration

examples and consider them comprehensively to find a configuration solution.

Pay attention to static route configuration. Many L2TP applications rely on static routes to initiate

connection requests.

Troubleshooting L2TP

The VPN connection setup process is complex. The following presents an analysis of some common faults

that might occur in the process. Before troubleshooting the VPN, make sure that the LAC and LNS are

connected correctly across the public network.

Symptom 1

Users cannot log in.