Chapter 35 L2TP VPN
ZyWALL Series CLI Reference Guide
303
35.5.2 L2TP Account Commands
This table lists the commands to create, remove, display and bind L2TP VPN accounts. You must use the
configure terminal command to enter the configuration mode before you can use these
commands.
show l2tp-over-ipsec
Displays the L2TP VPN settings.
show l2tp-over-ipsec session
Displays current L2TP VPN sessions.
Table 160 L2TP VPN Commands
COMMAND DESCRIPTION
Table 161 L2TP VPN Commands
COMMAND DESCRIPTION
[no] account l2tp
profile_name
Creates an L2TP account and enters sub-command mode.
authentication {chap |
chap-pap | mschap |
mschap-v2 | pap}
Selects how the Zyxel Device authenticates a remote user before
allowing access to the L2TP VPN tunnel. PAP (Password Authentication
Protocol) is more readily available than CHAP (Challenge Handshake
Authentication Protocol), but CHAP is more secure than PAP.
• chap-pap - Your Zyxel Device accepts either CHAP or PAP when
requested by this remote node.
• chap - Your Zyxel Device accepts CHAP only.
• pap - Your Zyxel Device accepts PAP only.
• mschap - Your Zyxel Device accepts MSCHAP only.
• mschap-v2 - Your Zyxel Device accepts MSCHAP-V2 only.
encrypted-password
ciphertext
Sets the password to encrypt L2TP traffic.
ciphertext: The encryption password.
idle <0..360>
Specifies the number of seconds (0 to 360) that must elapse without
traffic before the Zyxel Device automatically disconnects the L2TP
tunnel. 0 (zero) means the timeout is disabled.
password
isp_account_password
Sets the password given by the ISP for this account.
isp_account_password: Password as given by ISP.
server {domain_name |
w.x.y.z}
Specifies the fully-qualified domain name (domain_name) or IP address
for the ISP account.
user
isp_account_username
Displays the activity log for the specified user.
isp_account_username: User name as given by ISP.
show account l2tp
[profile_name]
Displays above details of all L2TP accounts or the one specified.
Interface interface_name
Specifies a PPP interface (see Section 16.2 on page 121) and enters that
interface sub-command mode to bind an L2TP account to it.
account profile_name
Specifies the L2TP account to bind to this interface.
local-address w.x.y.z
Specifies the IP address of this interface.
Interface disconnect
Disconnects the L2TP tunnel on this interface.
Interface dial wan1_ppp
Connects the L2TP tunnel on this interface.
show interface ppp
Displays details of each PPP interface connection.
To Next Page
Loading...
