[j-nsp] Lac Lns

M.Mihailidis mixalism at gmail.com
Thu Feb 28 02:30:27 EST 2008 

i had the lac on the default virtual router and the lns on the VR1
i did not work but when i issued the aaa- profile xxxxxx
and translate the current domain to something else it worked.
the thing i want to do is  configure another virtual router lets say MLPPP
with the appropriete loopback and interface ip address
and begin the tunnel from  there so the domain map would look like this

aaa domain-map "mlppp.com"
 router-name MLPPP
 ipv6-router-name default
 tunnel 1
  address "10.10.10.1"
  source-address "10.10.10.2"
  password 12345

should this work?? This command that you said is it mandatory????



----- Original Message ----- 
From: "Chaitenya Aggarwal" <chaitenya at juniper.net>
To: "Nitin Vig" <nitinvig at juniper.net>; "M.Mihailidis" <mixalism at gmail.com>; 
"Juniper-Nsp" <juniper-nsp at puck.nether.net>
Sent: Wednesday, February 27, 2008 7:56 PM
Subject: RE: [j-nsp] Lac Lns


Having LAC and LNS on same box is possible only if you provide the
following shell command.

pppLnsBypassLocalDomain

Following is the working config for LNS and LAC on Single router with
shell command enabled.

profile lac
 ppp authentication chap

profile lns
 ip virtual-router default
 ip unnumbered loopback 0
 ppp authentication chap

aaa domain-map "domain1.com"
 router-name vr1
 ipv6-router-name default
 tunnel 1
  address "2.0.0.1"
  source-address "2.0.0.2"
  identification tunnelId
  client-name lac
  server-name lns
  password test

l2tp destruct-timeout 10
l2tp destination profile lns virtual-router default ip address 2.0.0.2
 remote host lac
  tunnel password test
  profile lns
  local host lns
  local ip address 2.0.0.1


Regards,
-Chaitenya

-----Original Message-----
From: juniper-nsp-bounces at puck.nether.net
[mailto:juniper-nsp-bounces at puck.nether.net] On Behalf Of Nitin Vig
Sent: Wednesday, February 27, 2008 11:16 PM
To: M.Mihailidis; Juniper-Nsp
Subject: Re: [j-nsp] Lac Lns

Are you testing lac and lns on the same box? That is not supported.

If not, then try logging at debug level for l2tp, l2tpstatemachine,
ppppacket and aaaUserAccess. They might give a clue.

Regards,
Nitin

-----Original Message-----
From: juniper-nsp-bounces at puck.nether.net
[mailto:juniper-nsp-bounces at puck.nether.net] On Behalf Of M.Mihailidis
Sent: Wednesday, February 27, 2008 8:10 PM
To: Juniper-Nsp
Subject: [j-nsp] Lac Lns

Hello
i have an issue getting up the tunnel from the Lac to Lns
any help welcome

the configuration is:

aaa domain-map "mlppp.com"
 router-name default
 ipv6-router-name default
 tunnel 1
  address "10.10.10.1"
  source-address "10.10.10.2"
  password 12345

profile "L2TP-Generic"
 ip unnumbered loopback 10
 ip sa-validate
 ip ignore-df-bit
 ppp authentication pap chap
 ppp multilink enable
 pppoe remote-circuit-id

tunnel-server 2/2/0
 max-interfaces all-available


interface loopback 40
 ip address 10.10.10.2 255.255.255.255


l2tp destination profile "Lac" virtual-router VR1 ip address 0.0.0.0
 remote host default
  tunnel password 12345
  profile "L2TP-Generic"
  local ip address 10.10.10.1


and the loopback of VR1

interface loopback 10
ip address 10.10.10.1 255.255.255.25






_______________________________________________
juniper-nsp mailing list juniper-nsp at puck.nether.net
https://puck.nether.net/mailman/listinfo/juniper-nsp
_______________________________________________
juniper-nsp mailing list juniper-nsp at puck.nether.net
https://puck.nether.net/mailman/listinfo/juniper-nsp

More information about the juniper-nsp mailing list