 | Copyright © 2008, Juniper Networks, Inc. All rights reserved. Trademark Notice. | |
To configure the L2TP for the group profile, include the following statements at the [edit access group-profile profile-name l2tp] hierarchy level:
- [edit access group-profile profile-name l2tp]
-
interface-id interface-id;
-
lcp-renegotiation;
-
local-chap;
-
maximum-sessions-per-tunnel number;
interface-id is the identifier for the interface representing an L2TP session configured at the [edit interfaces interface-name unit local-unit-number dial-options] hierarchy level. For more information about the interface ID, see the JUNOS Services Interfaces Configuration Guide.
You can configure the LNS so that it renegotiates the link control protocol (LCP) with the PPP client (in the renegotiation statement). By default, the PPP client negotiates the LCP with the L2TP access concentrator (LAC). When you do this, the LNS discards the last sent and the last received LCP configuration request attribute value pairs (AVPs) from the LAC; for example, the LCP negotiated between the PPP client and the LAC.
You can configure the JUNOS software so that the LNS ignores proxy authentication AVPs from the LAC and reauthenticates the PPP client using a CHAP challenge (in the local-chap statement). When you do this, the LNS directly authenticates the PPP client. By default, the PPP client is not reauthenticated by the LNS.
number is the maximum number of sessions per L2TP tunnel.
| Copyright © 2008, Juniper Networks, Inc. All rights reserved. Trademark Notice. | |