6 l2tp application examples, Router-to-router secure tunnel example – Allied Telesis AT-WR4500 User Manual

166

AT-WR4500 Series - IEEE 802.11abgh Outdoor Wireless Routers

RouterOS v3 Configuration and User Guide

8.5.6

L2TP Application Examples

Router-to-Router Secure Tunnel Example

WISP#1

192.168.80.0/24

WISP#2

192.168.81.0/24

Home Office
To Internet
192.168.80.1/24




LAN
10.150.2.254/24

Remote Office
To Internet
192.168.81.1/24




LAN
10.150.1.254/24

10.150.2.1/24

10.150.1.1/24

Network Setup without L2TP enabled

Big

Internet

Figure 23: Router-to-Router Secure Tunnel Example

There are two routers in this example:

[HomeOffice]

Interface LocalHomeOffice 10.150.2.254/24
Interface ToInternet 192.168.80.1/24

[RemoteOffice]
Interface ToInternet 192.168.81.1/24
Interface LocalRemoteOffice 10.150.1.254/24
Each router is connected to a different ISP. One router can access another router through the Internet.
On the L2TP server a user must be set up for the client:

[admin@HomeOffice] ppp secret> add name=ex service=l2tp password=lkjrht
local-address=10.0.103.1 remote-address=10.0.103.2
[admin@HomeOffice] ppp secret> print detail
Flags: X - disabled
0 name="ex" service=l2tp caller-id="" password="lkjrht" profile=default
local-address=10.0.103.1 remote-address=10.0.103.2 routes==""

[admin@HomeOffice] ppp secret>

Then the user should be added in the L2TP server list:

[admin@HomeOffice] interface l2tp-server> add user=ex
[admin@HomeOffice] interface l2tp-server> print
Flags: X - disabled, D - dynamic, R - running
# NAME USER MTU CLIENT-ADDRESS UPTIME ENC...
0 l2tp-in1 ex
[admin@HomeOffice] interface l2tp-server>