80
Ste
Command
Remarks
2. Enter L2TP group view in LAC
mode.
l2tp-group group-number [ mode
lac ]
N/A
3. Specify LNS IP addresses.
lns-ip { ip-address }&<1-5>
By default, no LNS IP addresses
are specified.
Configuring the source IP address of L2TP tunnel packets
For high availability, HP recommends using the IP address of a loopback interface as the source IP
address of L2TP tunnel packets on the LAC.
To configure the source IP address of L2TP tunnel packets:
Ste
Command
Remarks
1. Enter system view.
system-view N/A
2. Enter L2TP group view in LAC
mode.
l2tp-group group-number [ mode
lac ]
N/A
3. Configure the source IP
address of L2TP tunnel
packets.
source-ip ip-address
By default, the source IP address of
L2TP tunnel packets is the IP
address of the egress interface.
Enabling transferring AVP data in hidden mode
L2TP uses Attribute Value Pairs (AVPs) to transmit tunnel negotiation parameters, session negotiation
parameters, and user authentication information. Transferring AVP data in hidden mode can hide
sensitive AVP data such as user passwords. This feature encrypts AVP data with the key configured by
using the tunnel password command before transmission.
This configuration takes effect only when the tunnel authentication feature is enabled. For more
information about configuring tunnel authentication, see "Configuring L2TP tunnel authentication
."
To enable transferring AVP data in hidden mode:
Step Command Remarks
1. Enter system view.
system-view N/A
2. Enter L2TP group view in LAC
mode.
l2tp-group group-number [ mode
lac ]
N/A
3. Enable transferring AVP data
in hidden mode.
tunnel avp-hidden
By default, AVP data is transferred
in plain text.
Configuring AAA authentication on an LAC
You can configure AAA authentication an LAC to authenticate the remote dialup users and initiate a
tunneling request only for qualified users. A tunnel will not be established for unqualified users.
The device supports both local AAA authentication and remote AAA authentication.
To Next Page
Loading...
Need help?
General
