The allow l2tp command allows calls from the specified remote end of a tunnel and specifies a VT interface.
The undo allow command rejects calls from the specified remote end.
allow l2tp virtual-template virtual-template-number [ remote remote-name ] [ domain domain-name ] [ vpn-instance vpn-instance-name ]
undo allow
| Parameter | Description | Value |
|---|---|---|
virtual-template-number |
Specifies the number of a VT interface used for creating a virtual access interface. |
The value is an integer ranging from 0 to 1023. |
remote-name |
Specifies the name of a remote end. |
The value is a case-sensitive string of 1 to 30 characters. |
domain-name |
Specifies the domain name of the intranet connected to the LNS. |
The value is a case-sensitive string of 1 to 64 characters. |
vpn-instance-name |
Specifies the name of a VPN instance. |
The value is a case-sensitive string of 1 to 31 characters. |
By default, allowing calls is disabled.
If the remote end name of a tunnel is specified, ensure that the remote end name is the same as the local end name specified on the LAC.
If the default L2TP group default-lns is used, you do not need to specify the remote end name of the tunnel. If a non-default L2TP group is used, you must specify the remote end name of the tunnel.
In Windows 2000 beta 2, if the name of the local end of a VPN is NONE, and the remote end name that the FW receives is NONE. To test functions or receive the tunnel connection request sent by an anonymous remote end, configure a default L2TP group.
To delete a VT interface that has been referenced by an L2TP group, run the undo l2tp-group command to delete the L2TP group first.