ESR series service routers.ESR-Series. User manual
15.6.1 Configuration algorithm
Step Description Command Keys
1 Create a L2TP tunnel and switch to its
configuration mode.
esr(config)# tunnel l2tp <INDEX> <INDEX> – tunnel identifier, set in
the range of: [1..10].
2 Specify VRF instance, in which the
given L2TP tunnel will operate
(optional).
esr(config-l2tp)# ip vrf
forwarding <VRF>
<VRF> – VRF name, set by the
string of up to 31 characters.
3 Specify the description of the
configured tunnel (optional).
esr(config-l2tp)# description
<DESCRIPTION>
<DESCRIPTION> – tunnel
description, set by the string of up
to 255 characters.
4 Include the L2TP tunnel in a security
zone and configure interaction rules
between zones or disable firewall (see
section Firewall configuration).
esr(config-l2tp)# security-zone
<NAME>
<NAME> – security zone name,
set by the string of up to 31
characters.
esr(config-l2tp)# ip firewall
disable
5 Set remote IP address for tunnel
installation.
esr(config-l2tp)# remote address
<ADDR>
<ADDR> – local gateway IP
address, defined as
AAA.BBB.CCC.DDD where each
part takes values of [0..255].
6 Specify the user and set an encrypted
or unencrypted password to
authenticate the remote party.
esr(config-l2tp)# username
<NAME> password ascii-text
{ <WORD> | encrypted <HEX> }
<NAME> – user name, set by the
string of up to 31 characters.
<WORD> – unencrypted password,
set by the string of [8..64]
characters, may include [0-9a-fA-F]
characters.
<HEX> – encrypted password, set
by the string of [16..128]
characters.
7 Select a key authentication method
for IKE connection.
esr(config-l2tp)# ipsec
authentication
method pre-shared-key