| [ LiB ] |   |
Practical Exercise 14-9: Layer 2 Tunneling Protocol over IPSec
Complete the tasks outlined in this Practical Exercise. Also review the Practical Exercise solution to see how you did and to see what concepts you might need to review.
In this Practical Exercise, you are the administrator of an L2TP Network Server (LNS), R1, and an L2TP Access Concentrator (LAC), dR3, which will be the terminating endpoint for remote dial-in users.
Background Information
You will configure your LAC and LNS to accept incoming L2TP encrypted IPSec connections from remote users. You will use the topology illustrated in Figure 14-17.
Figure 14-17. L2TP over IPSec
Task 1: Configure R3
- Step 1. At the R3 console, provide all the configuration required to configure the router as the LAC:
- Create a local account.
- Enable VPDN.
- Create a local IP pool.
- Define an access list that specifies L2TP traffic as interesting.
- Configure an async line.
- Create an IKE policy.
- Define the IKE peer and key.
- Create an IPSec transform set.
- Create a crypto map.
- Assign the crypto map to an interface.
Task 2: Configure R1
- Step 1. At the R1 console, provide all the configuration required to configure the router as the LNS:
- Create a local account.
- Enable VPDN.
- Create a local IP pool.
- Define an access list that specifies L2TP traffic as interesting.
- Create a VPDN group to accept tunnel requests.
- Configure the virtual template for cloning.
- Create an IKE policy.
- Define the IKE peer and key.
- Create an IPSec transform set.
- Create a crypto map.
- Assign the crypto map to an interface.
| [ LiB ] | |