Product specifications
Efficient Networks
®
Router family
Command Line Interface Guide
Chapter 6: Connection Management
Efficient Networks
®
Page 6-57
Set LAC and/or LNS. In this case, both will allow this router to establish and receive a
tunnel.
l2tp set type all tunnelb
Add the remote profile for the IP network on the other end of the tunnel. This name
must match the name in the command "l2tp set oursysname <name> <tunnelname>"
on the Corporate router.
remote add corp
Define the authentication password expected for this PPP link. This must match the
password used in the command "l2tp set ourpassword password> <tunnel name>"
on the Corp router.
remote setpasswd corppass corp
Define the other tunnel device as the LNS. This must match the tunnel name in the
command "l2tp add <tunnel name>" on the Branch router. This links the l2tp settings
to the remote settings for this tunnel profile.
remote setlns tunnelb corp
Set authentication to CHAP for the PPP link.
remote setauthen chap corp
Add an IP route to the LAN on the other end of the tunnel PPP link, a route must be
added for each subnet that exist on the Corp LAN.
remote addiproute 10.2.0.0 255.255.255.0 1 corp
save
reboot
Corporate Configuration:
Set up the tunnel to the Branch Office. The name "tunnela" is the name that is
expected from the tunnel peer when challenged to identify itself. Corporate asks "Who
are you?" and Branch Office says "I am tunnela" and Corporate authenticates. This
setting must match the command "l2tp setourtunnelname <name> <tunnelname>" on
the Branch Office router.
l2tp add tunnela
Define the common authentication secret used between the two routers in the VPN.
This tunnel device will use the password of "tunnelsecret" for the tunnel peer when
challenged to identify itself. Both peers use the same secret.
l2tp set chapsecret tunnelsecret tunnela