[j-nsp] L2TP tunnel authentication with NAS-Port and NAS-Port-Type
Joe Shen
sj_hznm at yahoo.com.cn
Mon Apr 23 21:38:01 EDT 2007
hi,
we use Juniper ERX1440 as L2TP LNS to provide VPDN
service to customers.
Currently, customer dial into their internal network
as follows:
1. client PC init a PPPoE session to LAC, with user
name like aaa at bbbb
2. According character behind @, a L2TP tnnnel is
established from LAC to LNS
3. LAC forward username and password to LNS
4. LNS authenticate username and password by RADIUS
protocol
5. if authentication succeeds, IP address is
allocated by LNS
Now, the customer want to bind their account to
access line. That is, when AAA server authenticate a
dial-up request, NAS-port information should be
verified.
Is that possible to enable such method? or should
we change the authenticate procedure?
thanks in advance
Joe
___________________________________________________________
抢注雅虎免费邮箱3.5G容量,20M附件!
http://cn.mail.yahoo.com
More information about the juniper-nsp
mailing list