L2TPv3 tunnelling and configuration on IAP

Aruba Employee

Introduction : L2TPv3 tunnelling  is supported form 6.2.1.0-3.4.0.1 and above 

 

Feature Notes :

 

Layer 2 Tunneling Protocol (L2TP) is a tunneling protocol used to support virtual private networks (VPNs) or as part of the delivery of services by ISPs.

 

 

The primary requirement is for Aruba IAP to act as LAC(L2TP Access Concentrator) and tunnel all wireless clients L2 traffic from AP to LNS(L2TP Network Server) 

 


In the context of IAP architecture, this is a centralized L2 model, wherein the VLAN on the corporate side are extended to remote branch sites.  

 


From the standard perspective L2TPv3 covers the following RFCs:

 

RFC 3931   -  Layer Two Tunneling Protocol - Version 3 (L2TPv3)

 

RFC  4719  -  Transport of Ethernet Frames over Layer 2 Tunneling Protocol Version 3 (L2TPv3)

 

Environment : This feature is only applicable to VC; L2TPv3 supports LNS and VC failover.

 

Network Topology : rtaImage.jpg

 

Configuration Steps :

 

 

Configuring Swarm Name:

 

 

 

l2tpv3 (config) # name aruba1600pop651865.hsbtst2.aus

 

 

 

 

 

Configuring L2TPv3 tunnel:

 

 

 

l2tpv3 (config) # l2tpv3 tunnel test

 

l2tpv3 (L2TPv3 Tunnel Profile "test") # message-digest-type MD5

 

l2tpv3 (L2TPv3 Tunnel Profile "test") # primary peer-address 10.13.11.157

 

l2tpv3 (L2TPv3 Tunnel Profile "test") # secret-key uenmddnjd88dm

 

 

 

 

 

L2TPv3 session:

 

 

 

l2tpv3 (config) # l2tpv3 session test_session

 

l2tpv3 (L2TPv3 Session Profile "test_session") # l2tpv3 tunnel aruba

 

 

 

Note:  Tunnel IP configuration

 

 

 

  • Optional parameter.
  • Needed for the reachability to the AP from corporate side.
  • Example SNMP polling.

 

 

 

Configuration:

 

 

 

l2tpv3 (config) # l2tpv3 session aruba_session

 

l2tpv3 (L2TPv3 Session Profile "aruba_session") # tunnel-ip 10.13.11.45 mask 255.255.255.0 vlan 10

 

 

 

 

 

 

 

UI configuration:

Swarm name

System->general tab

rtaImage.png

Tunnel parameters 

More---->VPN------>Controller tab

rtaImage.png

 



Session parameter:

more->vpn->controller

rtaImage.png

SSID and DHCP configuration:

rtaImage.png

 

Version history
Revision #:
1 of 1
Last update:
‎11-10-2014 11:41 AM
Updated by:
 
Labels (1)
Contributors
Search Airheads
cancel
Showing results for 
Search instead for 
Did you mean: