Method used to configure L2TP parameters on the USG2000 and USG5000

The method used to configure L2TP parameters on the USG2000 and USG5000 is as follows:
1. allow l2tp
The allow l2tp command is used to specify the name of the peer tunnel that accepts the call and the used Virtual-Template.
allow l2tp virtual-template virtual-template-number [ remote remote-name ] [ domain domain-name ] [ vpn-instance vpn-instance-name ]

2. call-lns local-user
The call-lns local-user command is used to perform L2TP dialup on the LAC to access the LNS, so as to establish an L2TP tunnel.
call-lns local-user username

3. l2tp domain suffix-separator
The l2tp domain suffix-separator command is used to set the suffix separator.
l2tp domain suffix-separator separator

4. l2tp match-order
The l2tp match-order name is used to set the sequence of the called number and domain name used to search for the L2TP group.
l2tp match-order { dnis | dnis-domain | domain | domain-dnis}

5. l2tp sendaccm enable
The l2tp sendaccm enable command is used to enable the function of sending ACCM messages by the L2TP.
By default, the function of sending ACCM messages by the L2TP is enabled.
l2tp sendaccm enable

6. l2tp-group
The l2tp-group command is used to create an L2TP group.
l2tp-group group-number

7. l2tpmoreexam enable
The l2tpmoreexam enable command is used to enable the LNS to accept L2TP connection requests initiated by different L2TP instances using the same tunnel name.
l2tpmoreexam enable

8. l2tp up-down log enable
The l2tp up-down log enable command is used to enable the function of sending logs upon L2TP user getting online or offline.
l2tp up-down log enable
9. mandatory-chap
The mandatory-chap command is used to forcibly perform the CHAP verification again between the LNS and the client.
By default, the system does not re-verify the CHAP.
mandatory-chap

10. mandatory-lcp
The mandatory-lcp command is used to re-negotiate the Link Control Protocol (LCP) between the LNS and the client.
By default, the system does not re-negotiate the LCP.
mandatory-lcp

11. start l2tp
The start l2tp command is used to specify the trigger conditions for originating calls when the local end serves as the L2TP LAC.
start l2tp { lns-domain domain-name | ip ip-address &<1-5> } { domain domain-name |fullusername user-name } [ vpn-instance vpn-instance-name ]

12. tunnel authentication
The tunnel authentication command is used to enable the L2TP tunnel verification.
tunnel authentication

13. tunnel avp-hidden
The tunnel avp-hidden command is used to configure the transmission mode in which the Attribute Value Pair (AVP) data is hidden.
tunnel avp-hidden

14. tunnel name
The tunnel name command is used to specify the local tunnel name.
tunnel name tunnel-name

15. tunnel password
The tunnel password command is used to specify the password used for tunnel verification.
tunnel password cipher password

16. tunnel source
The tunnel source command is used to configure the source tunnel interface used by the LAC to initiate a tunnel establishment request to the LNS.
tunnel source loopback interface-number

17. tunnel timer hello
The tunnel timer hello command is used to set the interval for sending Hello packets over the tunnel.
tunnel timer hello interval

18. virtual-l2tpforward enable
When the IP address used by the LNS to access the intranet and the IP address allocated by the LNS to the client are in the same network segment, you can use the virtual-l2tpforward enable and arp-proxy enable command together to enable the L2TP virtual forwarding function.
virtual-l2tpforward enable

Scroll to top