86
Configuring optional L2TP parameters
The optional L2TP parameter configuration tasks apply to both LACs and LNSs.
Configuring L2TP tunnel authentication
Tunnel authentication allows the LAC and LNS to authenticate each other. Either the LAC or the LNS can
initiate a tunnel authentication request. To implement tunnel authentication, enable tunnel authentication
on both the LAC and LNS, and configure the same non-null key on them.
To ensure tunnel security, enable tunnel authentication.
For the tunnel authentication key change to take effect, change the tunnel authentication key before
tunnel negotiation is performed.
To configure L2TP tunnel authentication:
Ste
Command
Remarks
1. Enter system view.
system-view N/A
2. Enter L2TP group view.
l2tp-group group-number [ mode { lac
| lns } ]
N/A
3. Enable L2TP tunnel
authentication.
tunnel authentication Enabled by default.
4. Configure the tunnel
authentication key.
tunnel password { cipher | simple }
password
By default, no key is configured.
Setting the Hello interval
To check the connectivity of a tunnel, the LAC and LNS periodically send each other Hello packets. At
receipt of a Hello packet, the LAC or LNS returns a response packet. If the LAC or LNS receives no
response packets from the peer within the Hello interval, it retransmits the Hello packet. If it receives no
response packets from the peer after transmitting the Hello packet five times, it considers the L2TP tunnel
to be down.
To set the Hello interval:
Ste
Command
Remarks
1. Enter system view.
system-view N/A
2. Enter L2TP group view.
l2tp-group group-number [ mode { lac
| lns } ]
N/A
3. Set the Hello interval.
tunnel timer hello hello-interval The default setting is 60 seconds.
Enabling session flow control
This feature adds sequence numbers to transmitted packets and uses them to reorder packets arriving out
of order and to detect lost packets.
To Next Page
Loading...
Need help?
General
