[OSL | CCIE_Security] l2tp clarifcation

Fri, 10 Sep 2010 05:42:04 -0700 

Hi all

I am trying l2tp.

r1-------r2(LNS) -------------r3 (LAC)-----------r4


r2 is the LAC and r3 is the LNS.

I don't have a PC and hence I am using r1 as the PPP client. R1 will send
PPP packets to R2 (LNS) using PPPoE.


With l2tp, when the r2 (LNS) gets the PPP packet from R1, using the domain
name or dnis it searches of whether it is a VPDN user. If yes, it initiates
l2tp tunnel to LNS. Only with ISDN or Analog modem,
we can use DNIS. Here the only possible way is to use domain name.

I have configured r1's g0/1 interface with pppoe that is connected to r2
(lns).

There are two issues for me.

1) How do I make r1 to send the domain name in PPP session? Should I use
usern...@domain-name when authenticating with chap?
2) How do I terminate the PPPoE session at r2 (LNS)? Should I use the same
vpdn group that I used for l2tp or a different one. If I try to configure
different vpdn group, I see only l2tp. pppoe, pptp and any are not there

Can someone please fix the missing configuration.


*R1 config*

interface g0/1
 no shutdown
 pppoe-client dial-pool-number 1
 pppoe enable

interface Dialer0
 exit
default interface Dialer0

interface Dialer0
 ip mtu 1452
 no shutdown
 ip address 10.20.30.41 255.255.255.0
 dialer pool 1
 dialer-group 1
 encapsulation ppp
 dialer idle-timeout 120
 dialer fast-idle 20
 exit
dialer-list 1 protocol ip permit


*LAC configuration*

hostname LAC
username LAC password 7 0107130A550E0A1F205F5D
username LNS password 7 001006080A5E07160E325F
username dialupuser password 7 14131B0A00142B3837


vpdn enable
vpdn search-order domain
vpdn-group 1
 request-dialin
  protocol l2tp
  domain cisco.com
 initiate-to ip 20.1.1.2
 local name LAC


*LNS config*

hostname LNS

username LAC password 7 0107130A550E0A1F205F5D
username LNS password 7 120D10191C0E00142B3837
username [email protected] password 7 104A0018090713181F

vpdn enable
vpdn-group 1
 accept-dialin
  protocol l2tp
  virtual-template 1
 terminate-from hostname LAC
 local name LNS

interface Virtual-Template1
ip unnumbered Ethernet0
no ip directed-broadcast
no ip route-cache
peer default ip address pool mypool
ppp authentication chap


http://www.cisco.com/en/US/tech/tk583/tk372/technologies_configuration_example09186a0080093f6f.shtml

With regards
Kings

_______________________________________________
For more information regarding industry leading CCIE Lab training, please visit 
www.ipexpert.com

Reply via email to