How do I assign DNS to L2TP dial-up users

17

You can use either of the following methods:
-Use the DNS server address specified in the address pool.
1.Create an address pool and specify the DNS server address in the address pool. system-view
[sysname] ip pool l2tp_pool
[sysname-pool-l2tp_pool] section 0 1.1.1.1 1.1.1.10
[sysname-pool-l2tp_pool] dns-list 2.2.2.1 //Change the DNS server address to the actual address.
[sysname-pool-l2tp_pool] quit
2.Create a service scheme and reference the address pool.[sysname] aaa
[sysname-aaa] service-scheme srvscheme1
[sysname-aaa-service-srvscheme1] ip-pool l2tp_pool //Change the DNS server address to the actual address.
3.Reference the service scheme in the authentication domain. system-view
[sysname] aaa
[sysname-aaa] domain domain1 //Change the authentication domain to the one used when you configure L2TP.
[sysname-aaa-domain1] service-scheme srvscheme1

-Use the DNS server address specified in the service scheme.
1.Create a service scheme. system-view
[sysname] aaa
[sysname-aaa] service-scheme srvscheme1
[sysname-aaa-service_srvscheme1] dns 2.2.2.1 //Change the DNS server address to the actual address.
2.Reference the service scheme in the authentication domain. system-view
[sysname] aaa
[sysname-aaa] domain domain1 //Change the authentication domain to the one used when you configure L2TP.
[sysname-aaa-domain-domain1] service-scheme srvscheme1 //Reference the service scheme in the authentication domain.

If DNS server addresses are specified in both the address pool and service scheme, the DNS server address specified in the address pool is preferentially used.

Other related questions:
How do I implement DNS resolution for L2TP users on the AR router
Host resolution is implemented by DNS. The ip host command can be used to configure static DNS entries.

How to perform DNS resolution for L2TP users on the AR
Host resolution is implemented through DNS. You can run the ip host command on the device to configure static DNS entries.

If L2TP tunnel authentication is enabled for L2TP dial-up, what is the default authentication password
By default, the tunnel authentication password is empty on a router. For the sake of security, L2TP tunnel authentication is enabled by default. In case of network connectivity test or receiving a connection request sent by an unknown remote end, disable L2TP tunnel authentication. It is recommended that you enable L2TP tunnel authentication. If a PC initiates L2TP dial-up, you are advised to configure the undo tunnel authentication command on the LNS to disable L2TP tunnel authentication.

If you have more questions, you can seek help from following ways:
To iKnow To Live Chat
Scroll to top