< Home

tunnel authentication

Function

The tunnel authentication command enables L2TP tunnel authentication.

The undo tunnel authentication command disables L2TP tunnel authentication.

Format

tunnel authentication

undo tunnel authentication

Parameters

None

Views

L2TP group view

Default Level

2: Configuration level

Usage Guidelines

By default, L2TP tunnel authentication is enabled.

For security purposes, implement authentication on both ends of a tunnel. To test network connectivity or accept the connection initiated by an unknown peer, you may choose not to implement tunnel authentication.

L2TP tunnel authentication can be initiated by either of the two ends, LAC or LNS. If tunnel authentication is initiated by either of the two ends, identity authentication is implemented during the tunnel establishment. A tunnel can be established only when the passwords of two ends are the same and not empty. Otherwise, the local end disconnects the tunnel. If tunnel authentication is disabled on both the LAC and LNS, whether the passwords of the two ends are the same does not take effect.

Example

# Disable tunnel authentication for the peer end.

<sysname> system-view
[sysname] l2tp-group 1
[sysname-l2tp-1] undo tunnel authentication
Parent Topic: L2TP Configure Command
Copyright © Huawei Technologies Co., Ltd.
Copyright © Huawei Technologies Co., Ltd.
< Previous topic Next topic >