To establish L2TP service on a router, you need to identify an L2TP tunnel group and specify a number of values that define which access profiles, interface addresses, and other properties to use in creating a tunnel. To identify the tunnel group, include the tunnel-group statement at the [edit services l2tp] hierarchy level:
-
tunnel-group group-name {
-
hello-interval seconds;
-
hide-avps;
-
l2tp-access-profile profile-name;
-
local-gateway address address;
-
maximum-send-window packets;
-
ppp-access-profile profile-name;
-
receive-window packets;
-
retransmit-interval seconds;
-
service-interface interface-name;
-
-
syslog {
-
-
host hostname {
-
services severity-level;
-
facility-override facility-name;
-
log-prefix prefix-value;
- }
- }
-
tunnel-timeout seconds;
- }
 |
Note: If you delete a tunnel group or mark it inactive, all L2TP sessions in that tunnel group are terminated. If you change the value of the local-gateway address or the service-interface statement, all L2TP sessions using those settings are terminated. If you change or delete other statements at the [edit services l2tp tunnel-group group-name] hierarchy level, new tunnels you establish will use the updated values but existing tunnels and sessions are not affected. |
 | Copyright © 2008, Juniper Networks, Inc. All rights reserved. Trademark Notice. | |