Configuration L2TP via LTE port.

Latest reply: Oct 30, 2018 09:22:53 429 10 10 0

【Problem Description】

 


Customer want configuration L2TP between two AR,The topology as follow:

 


PC1---AR-1(LTE Port) ---internet---Third-part USG--AR-2 ----PC2

 


AR 1 is LTE port and as a LAC.

AR 2 is LNS with private network address.

 


【Problem Analysis】

 

Analysis the topology AR1 with LTE port this is a dynamic ip address so it should working as LAC

 

 

AR2 in private network so it should working as LNS.

 


The Third-part USG should configuration the NAT server that mapping the public ip address to AR2 private address with UDP port 1701

 


【Solution Description】

 


AR1 LAC Configuration

#

l2tp enable

#

acl number 3002                                                               

 rule 5 permit ip

#

dialer-rule

dialer-rule 1 ip permit

#

apn profile lteprofile     

 apn ltenet                                                   //sim APN Configuration

#

interface Virtual-Template1

ppp chap user huawei

ppp chap password cipher huawei123

ip address ppp-negotiate

l2tp-auto-client enable

#

interface Cellular0/0/0                      //WAN Port Configuration

dialer enable-circular

dialer-group 1

apn-profile lteprofile

dialer number *99# autodial

nat outbound 3002 

 ip address negotiate

#

interface GigabitEthernet2/0/0                 //LAN Port Configuration

ip address 192.168.10.1 255.255.255.0

#

l2tp-group 1

tunnel password cipher huawei123

tunnel name lac

start l2tp ip 202.1.1.1 fullusername huawei                    //Third-part USG WAN ip adress is 202.1.1.1

#

ip route-static 192.168.2.0 255.255.255.0 Virtual-Template1

ip route-static 0.0.0.0 0.0.0.0 Cellular0/0/0

#

return

 

 

AR2 LNS Configuration

#

l2tp enable

#

ip pool 1

network 192.168.1.0 mask 255.255.255.0

gateway-list 192.168.1.1

#

aaa

local-user huawei password cipher huawei123

local-user huawei privilege level 0

local-user huawei service-type ppp

#

interface Virtual-Template1

ppp authentication-mode chap

remote address pool 1

ip address 192.168.1.1 255.255.255.0

#

interface GigabitEthernet1/0/0                           //WAN Port connect to Third-part USG

ip address 192.168.100.1 255.255.255.0

#

interface GigabitEthernet2/0/0                           //LAN Port Configuration

ip address 192.168.2.1 255.255.255.0

#

l2tp-group 1

allow l2tp virtual-template 1 remote lac

tunnel password cipher huawei123

tunnel name lns

#

ip route-static 192.168.10.0 255.255.255.0 Virtual-Template1

ip route-static 0.0.0.0 0.0.0.0 192.168.100.2

#

return

 

 

 

 

 

 

  • x
  • convention:

w1
Created Oct 30, 2018 09:22:53 Helpful(0) Helpful(0)

When the port is LTE, seems like there is not any special configuration between before L2TP configuration, i didn't find any difference, can you explain more details and difference of this casue, thanks
  • x
  • convention:

12
Back to list

Reply

Reply
You need to log in to reply to the post Login | Register

Notice Notice: To protect the legitimate rights and interests of you, the community, and third parties, do not release content that may bring legal risks to all parties, including but are not limited to the following:
  • Politically sensitive content
  • Content concerning pornography, gambling, and drug abuse
  • Content that may disclose or infringe upon others ' commercial secrets, intellectual properties, including trade marks, copyrights, and patents, and personal privacy
Do not share your account and password with others. All operations performed using your account will be regarded as your own actions and all consequences arising therefrom will be borne by you. For details, see " Privacy."
If the attachment button is not available, update the Adobe Flash Player to the latest version!
Login and enjoy all the member benefits

Login and enjoy all the member benefits

Login