--authentication, authorization, and accounting. A framework of security services that provide the method for identifying
users (authentication), for remote access control (authorization), and for collecting and sending security server information
used for billing, auditing, and reporting (accounting).
--Layer 2 Tunnel Protocol. A Layer 2 tunneling protocol that enables an ISP or other access service to create a virtual tunnel
to link customer remote sites or remote users with corporate home networks. In particular, a network access server (NAS) at
the ISP point of presence (POP) exchanges PPP messages with the remote users and communicates by L2F or L2TP requests and
responses with the customer tunnel server to set up tunnels.
--Provider Edge. Networking devices that are located on the edge of a service provider network.
--Remote Authentication Dial-In User Service. RADIUS is a distributed client/server system that secures networks against unauthorized
access. In the Cisco implementation, RADIUS clients run on Cisco routers and send authentication requests to a central RADIUS
server that contains all user authentication and network service access information.
--Virtual Private Network. A system that permits dial-in networks to exist remotely to home networks, while giving the appearance
of being directly connected. VPNs use L2TP and L2F to terminate the Layer 2 and higher parts of the network connection at
the LNS instead of the LAC.
--Virtual Route Forwarding. Initially, a router has only one global default routing/forwarding table. VRFs can be viewed as
multiple disjoined routing/forwarding tables, where the routes of a user have no correlation with the routes of another user.