Can L2TP tunnels be established if the public address of the LNS is not fixed

5

Yes. You need to associate the public IP address of the LNS with a domain name and set the domain name as the server address on the LAC.

Other related questions:
How many L2TP tunnels can be established on a device
The number of L2TP tunnels that can be established on a device is shown as follows. -AR120&AR150&AR160&AR200&AR500 series: 16 -AR510 series: 2 -AR1200 series, AR2201-48FE, AR2202-48FE, AR2204, AR2204E: 128 -AR2220, AR2220E, AR2240 (using SRU40 or SRU60), AR2240C (using SRU40 or SRU60), AR3200 (using SRU40 or SRU60) series: 512 -AR2240 (using SRU80, or SRU100E), AR2240C (using SRU80), AR3200 (using SRU80, or SRU100E) series: 1024 -AR2240 (using SRU200, or SRU200E), AR2240C (using SRU200), AR3200 (using SRU200, or SRU200E) series: 2048. However, when the device is used as the LAC, the maximum number of L2TP tunnels cannot exceed the number of L2TP groups, that is, 1024. -AR2240 (using SRU400), AR2240C (using SRU400), AR3200 (using SRU400) series: 4096. However, when the device is used as the LAC, the maximum number of L2TP tunnels cannot exceed the number of L2TP groups, that is, 1024. -AR3600 (using SRUX5) series: 1 to 2048. However, when the device is used as the LAC, the maximum number of L2TP tunnels cannot exceed the number of L2TP groups, that is, 1024.

Can users access the internet after an L2TP tunnel is established
Yes. Only the traffic from users to intranet servers is transmitted by L2TP tunnels. Therefore, tunnels do not affect user access to the Internet.

How to rapidly locate the cause of a failure to establish a tunnel between the LAC and LNS
During L2TP configuration, the LAC cannot set up a tunnel with the LNS. Perform the following operations to quickly locate the fault.
1. Run the start l2tp command on the LAC to check whether there is a reachable route to the LNS. If the route is unreachable, ensure route reachability.
2. Check the L2TP configuration on the LNS and delete the remote parameter specified in the allow l2tp command. If an L2TP tunnel can be established successfully, the LAC cannot set up a tunnel with the LNS because the tunnel name on the LAC is incorrect or the tunnel name specified by the LNS is incorrect. Use the following methods:
 - Run the tunnel name command on the LAC to set the local tunnel name to the value of remote specified by the allow l2tp command on the LNS.
 - Run the allow l2tp command on the LNS to change the value of remote to the tunnel name configured on the LAC. If no local tunnel name is configured using the tunnel name command on the LAC, the value of remote is the device name of the LAC.

USG6000 LNS allocating a DNS address to the client
The specific content of the DNS address allocated by the USG6000 LNS to the client is as follows: HRP_Asys HRP_A[USG6600]interface Virtual-Template 1 HRP_A[USG6600-Virtual-Template1]ppp ipcp dns 8.8.8.8 HRP_A[USG6600-Virtual-Template1]qu HRP_A[USG6600] Command introduction: ppp ipcp dns Command function: The ppp ipcp dns command is used to configure the DNS server address. The undo ppp ipcp dns command is used to restore the default configuration. Command format: ppp ipcp dns { primary-dns-address [ secondary-dns-address ] | admit-any | request } undo ppp ipcp dns { primary-dns-address [ secondary-dns-address ] | admit-any | request } Parameter description: primary-dns-address specifies the address of the primary DNS server provided for the peer end. The value is in dotted decimal notation. secondary-dns-address specifies the address of the secondary DNS server provided for the peer end. The value is in dotted decimal notation. admit-any specifies any DNS server address provided for the peer end. - request specifies the request sent to the peer end for the DNS server address - View Interface view Default level: 2: Configuration level Use guide: By default, the DNS server address is not configured. Example: #Set the IP address of the primary DNS server obtained from the peer end to 10.2.0.70, and the IP address of the secondary DNS server to 10.2.0.71. system-view [sysname] interface Dialer 0 [sysname-Dialer0] ppp ipcp dns 10.2.0.70 10.2.0.71

If you have more questions, you can seek help from following ways:
To iKnow To Live Chat
Scroll to top