Specifications
VPN Setup 487
Chapter 22
Test the setup using the following CLI Commands
L2TP IPSec VPN Server Setup
This section describes the steps necessary to configure the Alcatel switch as
a VPN server.
Enter the policy sub-mode and define a policy with a specified priority.
Specify the authentication method (pre-shared key) using the following CLI
command.
Exit the policy sub-mode.
Set the value (string) of the IKE key to be used. This command also
specifies a group IP address and subnet mask. The IP address and mask
should be set as shown in the example below (IP = 0.0.0.0, netmask =
0.0.0.0) as these values will make the key global.
Specify the range of IP addresses to use an a VPN address pool. The
n.n.n.n and x.x.x.x arguments specify the starting and ending IP addresses
for the pool.
Enter the VPN L2TP Sub-Mode using the following CLI command.
Set the PPP authentication type using the following CLI command.
(Alcatel) # aaa test-server servername username password <Enter>
5
(Alcatel) (config) # crypto isakmp policy num <Enter>
(Alcatel) (config-isakmp) #authentication pre-share <Enter>
(Alcatel) (config) # exit <Enter>
(Alcatel) (config) #crypto isakmp key KeyString address 0.0.0.0 netmask
0.0.0.0 <Enter>
(Alcatel) (config) # ip local pool PoolName n.n.n.n x.x.x.x <Enter>
(Alcatel) (config) # vpdn group l2tp <Enter>
(Alcatel) (config-vpdn-l2tp) # ppp authentication PAP <Enter>
1
2
3
4
5
6
7