Can the interface address of the AR router used as the L2TP LAC and VT interface address of the LNS be on different network segments

14

The interface address of the AR router used as the L2TP LAC and VT interface address of the LNS can be on different network segments. The LAC and LNS can communicate with each other, but it is recommended that the interface address of the AR router used as the L2TP LAC and VT interface address of the LNS on the same network segment.

Other related questions:
Can the LAC address and LNS VT interface address be on different segments on the AR
The LAC address and LNS VT interface address can be on different segments on the AR. The LAC can communicate with the LNS, but you are not advised to configure different network segments for them.

Can addresses on the same network segment be configured on different interfaces of an AR
Addresses on the same network segment cannot be allocated to interfaces on an AR. Interfaces on an AR can be configured with IP addresses on network segments that overlap. For example, an interface is assigned IP address 20.1.1.1/16. When you configure IP address 20.1.1.2/24 for the other interface, the system displays a message. However, the configuration is successful. When you configure IP address 20.1.1.2/16 for the other interface, the system displays a message indicating that the address conflicts. The configuration fails. The primary and secondary addresses of an interface can be on network segments that overlap, but must be different. For example, an interface is configured with the primary IP address 20.1.1.1/24. When you configure the secondary IP address 20.1.1.2/16, the system displays a message. However, the configuration is successful. The primary and secondary addresses of interfaces can be on network segments that overlap, but must be different. For example, an interface is configured with IP address 20.1.1.1/16. When you configure IP address 20.1.1.2/24, the system displays a message. However, the configuration is successful.

Description of LAC and LNS of the L2TP on firewalls
L2TP access concentrator (LAC): It is a device attached to the switching network. The LAC has a PPP terminal system and delivers L2TP processing. It usually provides access services for PPP users. The LAC is located between the L2TP network server (LNS) and a user, used to transfer information packets between the LNS and the user. The LAC encapsulates the information packets received from the user based on L2TP and delivers the information packets to the LNS. In addition, it decapsulates information packets received from the LNS and delivers the information packets to the user. The LAC and the user are connected in local connection mode or over a PPP link. In the VPDN application scenario, the LAC and the user are connected over the PPP link. LNS: It is both a logical termination point of a PPP system and an L2TP server. Generally, it serves as an edge on the enterprise intranet. As one side of an L2TP tunnel endpoint, the LNS is a peer to the LAC. The LNS is the logical termination point of a PPP session that is being tunneled from the remote system by the LAC. By establishing an L2TP tunnel on the public network, the peer end of a PPP session is logically extended from the LAC to the LNS on the enterprise intranet.

Does the AR support difference of network segments between an interface IP address and a virtual IP address of VRRP
The AR does not support difference of network segments between an interface IP address and a virtual IP address of VRRP. The IP addresses must be set to the same network segment.

USG6000 LNS allocating a DNS address to the client
The specific content of the DNS address allocated by the USG6000 LNS to the client is as follows: HRP_Asys HRP_A[USG6600]interface Virtual-Template 1 HRP_A[USG6600-Virtual-Template1]ppp ipcp dns 8.8.8.8 HRP_A[USG6600-Virtual-Template1]qu HRP_A[USG6600] Command introduction: ppp ipcp dns Command function: The ppp ipcp dns command is used to configure the DNS server address. The undo ppp ipcp dns command is used to restore the default configuration. Command format: ppp ipcp dns { primary-dns-address [ secondary-dns-address ] | admit-any | request } undo ppp ipcp dns { primary-dns-address [ secondary-dns-address ] | admit-any | request } Parameter description: primary-dns-address specifies the address of the primary DNS server provided for the peer end. The value is in dotted decimal notation. secondary-dns-address specifies the address of the secondary DNS server provided for the peer end. The value is in dotted decimal notation. admit-any specifies any DNS server address provided for the peer end. - request specifies the request sent to the peer end for the DNS server address - View Interface view Default level: 2: Configuration level Use guide: By default, the DNS server address is not configured. Example: #Set the IP address of the primary DNS server obtained from the peer end to 10.2.0.70, and the IP address of the secondary DNS server to 10.2.0.71. system-view [sysname] interface Dialer 0 [sysname-Dialer0] ppp ipcp dns 10.2.0.70 10.2.0.71

If you have more questions, you can seek help from following ways:
To iKnow To Live Chat
Scroll to top