Important: This product requires that you buy a license and feature use key. Not all features and functions may be functioning on all platforms.
Important: The LNS service uses UDP ports 13660 through 13668 as the source port for receiving packets from the LAC. You can force the LNS to only use the standard L2TP port (UDP Port 1701) with the single-port-mode LNS service configuration mode command. Refer to the Command Line Interface Reference for more information on this command.
NOTE: For this configuration, the IP context name should be identical to the name of the destination context.
NOTE: For this configuration, the destination context name should not match the domain name of a specific domain.Important: This section provides the minimum instruction set for configuring an LNS service allowing the system to terminate L2TP tunnels and process data sessions. For more information on commands that configure additional LNS service properties, refer LNS Configuration Mode Commands chapter in Command Line Interface Reference.
Step 1 Create the LNS service and bind it to an interface IP address by applying the example configuration in the Creating and Binding LNS Service section.
Step 2 Specify the authentication parameters for LNS service by applying the example configuration in the Configuring Authentication Parameters for LNS Service section.
Step 3 Configure the maximum number of tunnels supported by the LNS service and maximum number of sessions supported per tunnel by applying the example configuration in the Configuring Tunnel and Session Parameters for LNS Service section.
Step 4 Configure peer LACs for the LNS service by applying the example configuration in the Configuring Tunnel and Session Parameters for LNS Service section.
Step 5 Optional. Specify the domain alias designated for the context which the LNS service uses for AAA functionality by applying the example configuration in the Configuring Domain Alias for AAA Subscribers section.
Step 6 Verify your LNS service configuration by following the steps in the Verifying the LNS Service Configuration section.
Step 7 Save your configuration as described in the Verifying and Saving Your Configuration chapter.context <dest_ctxt_name> -noconfirmlns-service <lns_svc_name> -noconfirmcontext <dest_ctxt_name>lns-service <lns_svc_name>
• For more information on authentication procedure and priorities, refer authentication command section in LNS Configuration Mode Commands chapter of Command Line Interface Reference.context <dest_ctxt_name>lns-service <lns_svc_name>max-tunnel <max_tunnels>max-session-per-tunnel <max_sessions>context <dest_ctxt_name>lns-service <lns_svc_name>peer-lac { <lac_ip_address> | <ip_address>/<mask> } [ encrypted ] secret <secret_string> [ description <desc_text> ]context <dest_ctxt_name> -noconfirmlns-service <lns_svc_name> -noconfirmnai-construct domain <domain_alias>Important: This command should only be used if the LNS service is configured to allow “no authentication” using the authentication allow-noauth command.
show lns-service name service_name
![]() |
Cisco Systems Inc. |
Tel: 408-526-4000 |
Fax: 408-527-0883 |