[c-nsp] Problems with multiple VPDN hops
Pshem Kowalczyk
pshem.k at gmail.com
Sun Apr 26 16:07:20 EDT 2009
Hi,
{cut}
> Based on this information, do you have any further suggestions and are
> you able to supply example configs of your own setup?
Please see here - both LTS in our example have exactly the same vpdn config:
vpdn-group L2TP-wholesale
! Default L2TP VPDN group
accept-dialin
protocol l2tp
vpn vrf InternalL2TP
local name akl-mdr-lts1
lcp renegotiation always
l2tp tunnel hello 300
l2tp tunnel password 0 xxxxxxxxxxxxxxxx
l2tp tunnel timeout no-session 1800
l2tp tunnel retransmit retries 7
l2tp tunnel retransmit timeout min 2
l2tp tunnel retransmit timeout max 5
and corresponding radius config:
DEFAULT Service-Type == Outbound-User, User-Name =~ "^host:",
NAS-Identifier =~ "^akl-mdr-lts1", Auth-Type := Accept
Cisco-AVPair += "vpdn:ip-addresses=10.119.255.93/10.119.255.92",
Cisco-AVPair += "vpdn:tunnel-type=l2tp",
Cisco-AVPair += "vpdn:vpn-vrf=InternalL2TP",
Cisco-AVPair += "vpdn:l2tp-tunnel-password=xxxxxxxxxxxxxxxx"
(the second layer of LTSes only differ in names and ip addresses)
kind regards
Pshem
More information about the cisco-nsp
mailing list