Configuring Access
To configure access, include the following statements at the
[edit access]hierarchy level:[edit access]address-poolpool-name{addressaddress-or-prefix;address-range low <lower-limit> high <upper-limit>;}group-profileprofile-name{l2tp {interface-idinterface-id;lcp-renegotiation;local-chap; maximum-sessions-per-tunnelnumber;multilink {drop-timeout milliseconds;fragmentation-thresholdbytes;}}ppp {framed-poolpool-id;idle-timeoutseconds;interface-idinterface-id;keepaliveseconds;primary-dnsprimary-dns;primary-winsprimary-win-server;secondary-dnssecondary-dns;secondary-winssecondary-wins;}}profileprofile-name{authentication-order [authentication-methods];clientclient-name{chap-secretchap-secret;group-profileprofile-name;l2tp {interface-idinterface-id;lcp-renegotiation;local-chap; maximum-sessions-per-tunnelnumber;multilink {drop-timeout milliseconds;fragmentation-thresholdbytes;}ppp-authentication (chap | pap);shared-secretshared-secret;}pap-passwordpap-password;ppp {framed-ip-addressip-address;framed-poolframed-pool;idle-timeoutseconds;interface-idinterface-id;keepaliveseconds;primary-dnsprimary-dns;primary-winsprimary-win-server;secondary-dnssecondary-dns;secondary-winssecondary-wins;}user-group-profileprofile-name;} }radius-disconnect {client-address{secretpassword;}}radius-disconnect-portport-number;radius-serverserver-address{accounting-portport-number;portport-number;retryattempts;secretpassword;source-addresssource-address;timeoutseconds;} traceoptions {flag all;flag authentication; flag chap; flag configuration;flag kernel;flag radius; }