Oming connections, so, Defines, Headquar ters – Allied Telesis AlliedWare AR440S User Manual
Page 32
Headquar
ters
Page 32 | AlliedWare™ OS How To Note: VPNs for Corporate Networks
Apply the policy to the VPN between headquarters and branch office 1.
set sqos interface=ipsec-branch1 tunnelpolicy=1
Apply the policy to the VPN between headquarters and branch office 2.
set sqos interface=ipsec-branch2 tunnelpolicy=1
This example creates four triggers, which allows for up to four simultaneous roaming client
VPNs. You can scale this to the correct number for your network.
Create the following scripts as text files on the router.
Create triggers to run the appropriate script when the interface comes up.
enable trigger
create trigger=1 interface=ppp0 event=up cp=ipcp script=ppp0up.scp
create trigger=2 interface=ppp0 event=up cp=ipcp script=ppp1up.scp
create trigger=3 interface=ppp0 event=up cp=ipcp script=ppp2up.scp
create trigger=4 interface=ppp0 event=up cp=ipcp script=ppp3up.scp
You need TOS (type of service) reflection so that DSCP marked VoIP packets can be
classified for prioritisation at the PPP level. Unless you already turned on TOS reflection
when you configured L2TP in
, delete your existing L2TP entry and add it
again.
delete l2tp ip=1.1.1.1-255.255.255.254 ppptemplate=1
add l2tp ip=1.1.1.1-255.255.255.254 ppptemplate=1 tos=on
create conf=<your-file.cfg>
set config=<your-file.cfg>
4.
For site-to-site VPNs, apply the SQoS policy to the tunnels
5.
For roaming clients, use triggers to apply SQoS to dynamic interfaces
script name
script contents
ppp0up.scp
set sqos int=ppp0 outpolicy=1
ppp1up.scp
set sqos int=ppp1 outpolicy=1
ppp2up.scp
set sqos int=ppp2 outpolicy=1
ppp3up.scp
set sqos int=ppp3 outpolicy=1
6.
For roaming clients, set L2TP TOS reflection
7.
Save your configuration