[c-nsp] RE: VPDN & RAIDUS Problems/configurations

Oliver Boehmer (oboehmer) oboehmer at cisco.com
Thu Nov 25 04:18:52 EST 2004


> Thank you all for your suggestions.
> I do face another problem now concerning VPDNS. We Have a couple of
> Access-Servers (AS5300 and AS5350). We want to enable VPDN on them
> but not 
> any tunnel Parameters. Tunnel parameters will be send to the ASs via a
> radius
> 
> I configure my radius server with the following tunnel parameters.
> 
> vpn     Password="cisco", Service-Type = Outbound-User
>         Tunnel-Type = :1:L2TP,
>         Tunnel-Medium-Type = :1:IP,
>         Tunnel-Server-Endpoint = :1:1192.168.1.1,
>         Tunnel-Assignment-ID = :1:vpntest,
>         Tunnel-Password = :1:test
> 
> What happens know is that in Order for the tunnel to be establish the
> LNS requires that we change the host na,e of the LAC to vpntest
because
> it seems  that the LAC does not send the tunnel ID as the one it
receives vi
> radius (vpntest). In case we change the LAC host name to vpntest,
> tunnel is establish.

Please use 

	Tunnel-Client-Auth-Id = :1:vpntest
	Tunnel-Server-Auth-Id = :1:vpntest

tunnel-assignment-id is something different, see
http://www.cisco.com/en/US/products/sw/iosswrel/ps1839/products_feature_
guide09186a00800b5db1.html

	oli




More information about the cisco-nsp mailing list