VPDN aware VRF in AS5350

Answered Question
May 30th, 2007
User Badges:

Hi,


I want to know if it's possible to implement vrfs for grouping different L2TP tunnels in an AS5350.


Thanks,


Alex

Correct Answer by mohammedmahmoud about 10 years 16 hours ago

Hi Alex,


No we use AS5350s for LAC, but our LNS is a Cisco 7200VXR, but according to Cisco Feature Navigator the AS5350s can be used as LNS.



HTH, please do rate all helpful replies,

Mohammed Mahmoud.

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (2 ratings)
Loading.
mohammedmahmoud Wed, 05/30/2007 - 12:21
User Badges:
  • Green, 3000 points or more

Hi,


AFAIK, VPDN design needs a LAC(AS) and LNS (PE router).


A virtual private dial-up network (VPDN) allows a private network dial in service to span across to remote access servers (defined as the L2TP Access Concentrator [LAC]).


When a Point-to-Point Protocol (PPP) client dials into a LAC, the LAC determines that it should forward that PPP session on to an L2TP Network Server (LNS) for that client. The LNS then authenticates the user and starts the PPP negotiation. Once PPP setup has completed, all frames are sent through the LAC to the client and the LNS (where the clients joins his VRF).


http://www.cisco.com/en/US/tech/tk801/tk703/technologies_tech_note09186a0080094586.shtml



HTH, please do rate all helpful replies,

Mohammed Mahmoud.

altorres75 Wed, 05/30/2007 - 13:41
User Badges:

Hi Mohammed,


The title I posted is wrong, it should be VRF aware VPDN.


Your explanation is right, there is an AS5350 that works as an LAC and I have another AS5350 that will work as an LNS. I want to know if the one working as an LNS is able to finish the L2TP tunnels in different VRFs.


thanks,


Alex

mohammedmahmoud Wed, 05/30/2007 - 13:46
User Badges:
  • Green, 3000 points or more

Hi Alex,


Yes, this is exactly what we are doing in our production network, customer VPDN sites dial in to the LAC and join the customer VRF on the LNS over the L2TP tunnel.


We are accomplishing this via the CAR (Cisco Access Registar - Cisco's RADIUS server), which by using Cisco-AVPair binds the customer virtual-access to the customer VRF.



HTH, please do rate all helpful replies,

Mohammed Mahmoud.

altorres75 Wed, 05/30/2007 - 13:59
User Badges:

Hi Mohammed,


so you mean you have AS5350s for LAC and LNS?


thanks,


Alex

Correct Answer
mohammedmahmoud Wed, 05/30/2007 - 14:14
User Badges:
  • Green, 3000 points or more

Hi Alex,


No we use AS5350s for LAC, but our LNS is a Cisco 7200VXR, but according to Cisco Feature Navigator the AS5350s can be used as LNS.



HTH, please do rate all helpful replies,

Mohammed Mahmoud.

Actions

This Discussion