NOTE
When the AR1200 communicates with a non-Huawei device, configure the AR1200 to invert clock signals
transmitted by a synchronous serial interface as required.
Figure 4-7 Networking diagram of the LAC-auto-initiated VPN
LAN
192.168.1.0/24
PC
Internet
LNS
Server
headquarters
RouterB
LAC
RouterA
Tunnel
Serial1/0/0
12.1.1.1/24
Serial1/0/0
12.1.1.2/24
192.168.0.2/24
Configuration Roadmap
The configuration roadmap is as follows:
1. Enable L2TP and create a virtual PPP user on the LAC. The virtual PPP user sends a
connection request to the server in the headquarters through the L2TP tunnel. After the
request is authenticated, the server assigns a private IP address to the virtual PPP user.
2. Configure a route with the destination segment of headquarters, and outbound interface of
the virtual PPP user interface. Enable the auto-dial function on the LAC.
3. Configure an IP address pool in the domain on the LNS.
Data Preparation
To complete the configuration, you need the following data:
l Number, IP address, and mask of the LAC virtual template interface
l L2TP group number
l Protocol used on the LNS, authentication mode (CHAP is used in this example), tunnel
password, local and remote device names of the LNS.
l Number, range, and mask of the remote address pool.
Procedure
Step 1 Configure RouterA (the LAC side).
In this example, the IP address of Serial1/0/0 on RouterA is 12.1.1.2, and the IP address of
Serial1/0/0 on RouterB is 12.1.1.1.
# Assign an IP address to Serial1/0/0 on RouterA.
<Huawei> system-view
[Huawei] sysname RouterA
[RouterA] interface serial 1/0/0
[RouterA-Serial1/0/0] link-protocol ppp
[RouterA-Serial1/0/0] ip address 12.1.1.2 255.255.255.0
[RouterA-Serial1/0/0] quit
# Set the user name and password, which must be the same as those on the user side.
Huawei AR1200 Series Enterprise Routers
Configuration Guide - VPN 4 L2TP Configuration
Issue 01 (2012-04-20) Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
278
To Next Page
Loading...
