beautypg.com

Verifying the configuration, Network requirements, Configuration procedure – H3C Technologies H3C SecPath F5020 User Manual

Page 52

background image

44

Verifying the configuration

# On the remote host, initiate the L2TP connection. After the connection is established, the remote host

can obtain the IP address 192.168.0.2 and ping the private IP address of the LNS (192.168.0.1).
# On the LNS, use the display l2tp session command to check the established L2TP session.

[LNS-l2tp1] display l2tp session

LocalSID RemoteSID LocalTID State

89 36245 10878 Established

# On the LNS, use the display l2tp tunnel command to check the established L2TP tunnel.

[LNS-l2tp1] display l2tp tunnel

LocalTID RemoteTID State Sessions RemoteAddress RemotePort RemoteName

10878 21 Established 1 2.1.1.1 1701 PC

Configuration example for LAC-auto-initiated L2TP tunnel

Network requirements

As shown in

Figure 16

, in LAC-auto-initiated mode, before a PPP user initiates a connection to the LAC,

the LAC initiates an L2TP tunnel with the LNS. When the PPP user initiates a connection, it uses the

established tunnel to access the corporate network.

Figure 16 Network diagram

Configuration procedure

1.

Configure the LNS:
# Configure IP addresses for the interfaces. (Details not shown.)
# Create a local user named vpdnuser, set the password, and enable the PPP service.

system-view

[LNS] local-user vpdnuser class network

[LNS-luser-network-vpdnuser] password simple Hello

[LNS-luser-network-vpdnuser] service-type ppp

[LNS-luser-network-vpdnuser] quit

# Create interface Virtual-Template 1, and specify its IP address as 192.168.0.20/24 and PPP
authentication mode as PAP.

[LNS] interface virtual-template 1

[LNS-virtual-template1] ip address 192.168.0.20 255.255.255.0

[LNS-virtual-template1] ppp authentication-mode pap

# Specify 192.168.0.2 as the IP address to be allocated to the PPP user.

[LNS-virtual-template1] remote address 192.168.0.2

[LNS-virtual-template1] quit

# Configure local authentication for PPP users in ISP domain system.

[LNS] domain system

[LNS-isp-system] authentication ppp local

Internet

LAC

Remote host

LNS

L2TP tunnel

LAN

10.2.0.0/16

GE1/0/1

3.3.3.2/24

GE1/0/1
3.3.3.1/24

Corporate

10.1.0.0/16

10.2.0.1

10.1.0.1

This manual is related to the following products:
See also other documents in the category H3C Technologies Safety: