To define L2TP, include at least the following statements at the [edit access] hierarchy level:
- [edit access]
-
address-pool pool-name {
-
address address-or-prefix;
-
address-range low <lower-limit> high <upper-limit>;
- }
-
profile profile-name {
-
authentication-order [ authentication-methods ];
-
-
client client-name {
-
chap-secret chap-secret;
-
-
l2tp {
-
interface-id interface-id;
-
maximum-sessions-per-tunnel number;
-
ppp-authentication (chap | pap);
-
shared-secret shared-secret;
- }
-
pap-password pap-password;
-
-
ppp {
-
framed-ip-address ip-address;
-
framed-pool framed-pool;
-
interface-id interface-id;
-
primary-dns primary-dns;
-
primary-wins primary-wins;
-
secondary-dns secondary-dns;
-
secondary-wins secondary-wins;
- }
- }
- }
-
radius-server server-address {
-
accounting-port port-number;
-
port port-number;
-
retry attempts;
-
secret password;
- }
 |
Note: When the L2TP network server (LNS) is configured with RADIUS authentication, the default behavior is to accept the preferred RADIUS-assigned IP address. Previously, the default behavior was to accept and install the nonzero peer IP address received in the Internet Protocol Control Protocol (IPCP) configuration request packet. For more information about RADIUS authentication for LT2P, see Configuring RADIUS Authentication for L2TP. |
 | Copyright © 2008, Juniper Networks, Inc. All rights reserved. Trademark Notice. | |