close

keyboard_arrow_left

Table of Contents Expand all

play_arrow Configuring Dynamic VLANs for Subscriber Access Networks
- play_arrow Dynamic VLAN Overview
- play_arrow Configuring Dynamic Profiles and Interfaces Used to Create Dynamic VLANs
- play_arrow Configuring Subscriber Authentication for Dynamic VLANs
- play_arrow Configuring VLANs for Households or Individual Subscribers Using ACI-Based Dynamic VLANs
- play_arrow Configuring VLANs for Households or Individual Subscribers Using Access-Line-Identifier Dynamic VLANs
- play_arrow High Availability for Service VLANs
  - Ethernet OAM Support for Service VLANs Overview
  - Configuring Ethernet OAM Support for Service VLANs with Double-Tagged Customer VLANs
play_arrow Configuring DHCP Subscriber Interfaces
- play_arrow VLAN and Demux Subscriber Interfaces Overview
- play_arrow Configuring Sets of Demux Interfaces to Provide Services to a Group of Subscribers
  - Configuring a Subscriber Interface Using a Set of Static IP Demux Interfaces
  - Configuring a Subscriber Interface Using a Set of Static VLAN Demux Interfaces
- play_arrow Configuring Dynamic Demux Interfaces That are Created by DHCP
  - Configuring Dynamic Subscriber Interfaces Using VLAN Demux Interfaces in Dynamic Profiles
  - Example: Dynamic IP Demux Subscriber Interfaces over Dynamic VLAN Demux Interfaces
- play_arrow Configuring DHCP Subscriber Interfaces over Aggregated Ethernet
- play_arrow Using Dynamic Profiles to Apply Services to DHCP Subscriber Interfaces
  - Dynamic Profile Attachment to DHCP Subscriber Interfaces Overview
  - Attaching Dynamic Profiles to DHCP Subscriber Interfaces or DHCP Client Interfaces
- play_arrow Configuring DHCP IP Demux and PPPoE Demux Interfaces Over the Same VLAN
  - Example: Concurrent Configuration of Dynamic DHCP IP Demux and PPPoE Demux Interfaces over the Same VLAN Demux Interface
- play_arrow Providing Security for DHCP Interfaces Using MAC Address Validation
  - MAC Address Validation for Subscriber Interfaces Overview
  - Configuring MAC Address Validation for Subscriber Interfaces
- play_arrow RADIUS-Sourced Weights for Targeted Distribution
  - RADIUS-Sourced Weights for Interface and Interface Set Targeted Distribution
  - Using RADIUS-Sourced Weights for Interface and Interface Set Targeted Distribution
- play_arrow Verifying Configuration and Status of Dynamic Subscribers
  - Verifying Configuration and Status of Dynamic Subscribers and Associated Sessions, Services, and Firewall Filters
play_arrow Configuring PPPoE Subscriber Interfaces
- play_arrow Configuring Dynamic PPPoE Subscriber Interfaces
- play_arrow Configuring PPPoE Subscriber Interfaces over Aggregated Ethernet Examples
- play_arrow Configuring PPPoE Session Limits
- play_arrow Configuring PPPoE Subscriber Session Lockout
- play_arrow Configuring MTU and MRU for PPP Subscribers
  - Understanding MTU and MRU Configuration for PPP Subscribers
  - Configuring MTU and MRU for PPP Subscribers
- play_arrow Configuring PPPoE Service Name Tables
- play_arrow Changing the Behavior of PPPoE Control Packets
- play_arrow Monitoring and Managing Dynamic PPPoE for Subscriber Access
  - Verifying and Managing Dynamic PPPoE Configuration
play_arrow Configuring MLPPP for Subscriber Access
- play_arrow MLPPP Support for LNS and PPPoE Subscribers Overview
- play_arrow Configuring MLPPP Link Fragmentation and Interleaving
- play_arrow Configuring Inline Service Interfaces for LNS and PPPoE Subscribers
- play_arrow Configuring L2TP Access Client for MLPPP Subscribers
  - Configuring L2TP Client Access to Support MLPPP for Static Subscribers
  - Configuring L2TP Client Access to Support MLPPP for Dynamic Subscribers
- play_arrow Configuring Static MLPPP Subscribers for MX Series
  - Example: Configuring Static LNS MLPPP Subscribers
  - Example: Configuring Static PPPoE MLPPP Subscribers
- play_arrow Configuring Dynamic MLPPP Subscribers for MX Series
  - Example: Configuring Dynamic LNS MLPPP Subscribers
  - Example: Configuring Dynamic PPPoE MLPPP Subscribers
- play_arrow Configuring Dynamic PPP Subscriber Services
- play_arrow Monitoring and Managing MLPPP for Subscriber Access
  - MLPPP Subscriber Accounting Statistics Overview
play_arrow Configuring ATM for Subscriber Access
- play_arrow Configuring ATM to Deliver Subscriber-Based Services
- play_arrow Configuring PPPoE Subscriber Interfaces Over ATM
- play_arrow Configuring ATM Virtual Path Shaping on ATM MICs with SFP
  - Configuring ATM Virtual Path Shaping on ATM MICs with SFP
- play_arrow Configuring Static Subscriber Interfaces over ATM
- play_arrow Verifying and Managing ATM Configurations
  - Verifying and Managing ATM Configurations for Subscriber Access
play_arrow Troubleshooting
- play_arrow Contacting Juniper Networks Technical Support
  - Collecting Subscriber Access Logs Before Contacting Juniper Networks Technical Support
- play_arrow Knowledge Base
  - Juniper Knowledge Base
play_arrow Configuration Statements and Operational Commands
- Junos CLI Reference Overview

list Table of Contents

English

keyboard_arrow_right

Configuring L2TP Client Access to Support MLPPP for Static Subscribers

date_range 06-Dec-23

arrow_backward

arrow_forward

To enable MLPPP over LT2P network server (LNS) support for MX Series, you must indicate whether MLPPP is supported for static subscribers from a particular L2TP client (LAC) by configuring the multilink statement currently supported in access profile. Access profiles define how to validate Layer 2 Tunneling Protocol (L2TP) connections and session requests. Within each L2TP access profile, you configure one or more clients (LACs). You can configure multiple access profiles and multiple clients within each profile.

With mixed mode support, the multilink statement enables MLPPP but does not set it. However, if you do not configure the multilink statement, MLPPP is not supported for static LAC subscribers.

The following two examples show L2TP access profile configurations for an MLPPP-capable static L2TP client and non-multilink (single link) static L2TP client.

To configure an L2TP access profile for MLPPP-capable static L2TP clients:

Create the access profile.

content_copy zoom_out_map
[edit access]
user@host# edit profile access-profile-name

Configure characteristics for one or more clients (LACs).
```
[edit access profile access-profile-name]
user@host# client client-name
```
Associate a group profile containing PPP attributes to apply for the PPP sessions being tunneled from this LAC client.
```
[edit access profile access-profile-name client client-name]
user@host# set user-group-profile group-profile-name
```
Configure the LNS to renegotiate the link control protocol (LCP) with the PPP client.
```
[edit access profile access-profile-name client client-name]
user@host# set l2tp lcp-renegotiation
```

Configure the maximum number of sessions allowed in a tunnel from the client (LAC).

content_copy zoom_out_map
[edit access profile access-profile-name client client-name]
user@host# set l2tp maximum-sessions-per-tunnel number

Configure the tunnel password used to authenticate the client (LAC).

content_copy zoom_out_map
[edit access profile access-profile-name client client-name]
user@host# set l2tp shared-secret shared-secret

(Optional) Specify a local access profile that overrides the global access profile and the tunnel group AAA access profile to configure RADIUS server settings for the client.
```
[edit access profile access-profile-name client client-name]
user@host# set l2tp aaa-access-profile
```

Specify that the L2TP client is MLPPP-capable for static subscribers.

content_copy zoom_out_map
[edit access profile access-profile-name client client-name]
user@host# set l2tp multilink

MLPPP is first negotiated with static subscribers coming from the LAC peer group profile, ce-lac-1-gp, but then switches to PPP if the subscriber rejects MLPPP. The following shows sample output for MLPPP-capable static L2TP client:

content_copy zoom_out_map
access profile {
        ce-l2tp-profile1 {
        client ce-lac-1 {
            user-group-profile ce-lac-1-gp;         
            l2tp {
                interface-id not-used;              
                lcp-renegotiation;                  
                maximum-sessions-per-tunnel 2000;   
                shared-secret "$9$2wgUHQF/9pB";     
                aaa-access-profile ce-aaa-profile;  
                multilink;                          
            }
        }
    }
}

To configure an L2TP access profile for non-MLPPP, or single link static L2TP clients, repeat Step 1 through Step 7 for configuring an L2TP access profile for multilink-capable static L2TP clients. Do not set l2tp multilink.

Only PPP is negotiated with static subscribers from the LAC peer group profile, ce-lac-2-gp, and an LCP configuration request from the customer premises equipment (CPE) with maximum received reconstructed unit (MRRU) option is rejected. The following shows sample output for single link static L2TP client:

content_copy zoom_out_map
access profile {
        ce-l2tp-profile1 {
        client ce-lac-2 {
            user-group-profile ce-lac-1-gp;         
            l2tp {
                interface-id not-used;              
                maximum-sessions-per-tunnel 1000;   
                shared-secret "$9$2aBcXyz/2lP";    
                aaa-access-profile ce-aaa-profile;  
                                                    ## multilink not entered, static subscriber is single link only
            }
        }
    }
}

arrow_backward PREVIOUS Configuring Service Device Pools for Load Balancing PPPoE and LNS Subscribers

NEXT arrow_forward Configuring L2TP Client Access to Support MLPPP for Dynamic Subscribers

Broadband Subscriber VLANs and Interfaces User Guide

Configuring L2TP Client Access to Support MLPPP for Static Subscribers

Stay in touch

Helped me install or use the product
Accelerated my deployment

Discuss the product with a co-worker
Make a purchase inquiry

Broadband Subscriber VLANs and Interfaces User Guide

Configuring L2TP Client Access to Support MLPPP for Static Subscribers

Related Documentation

Stay in touch