Cisco Cisco Packet Data Gateway (PDG) Documentation Roadmaps
GGSN Support in GPRS/UMTS Wireless Data Services
Features and Functionality - Optional Enhanced Feature Software ▀
Cisco ASR 5000 Series Product Overview ▄
OL-22937-01
L2TP LAC Support
The system configured as a Layer 2 Tunneling Protocol Access Concentrator (LAC) enables communication with L2TP
Network Servers (LNSs) for the establishment of secure Virtual Private Network (VPN) tunnels between the operator
and a subscriber's corporate or home network.
Network Servers (LNSs) for the establishment of secure Virtual Private Network (VPN) tunnels between the operator
and a subscriber's corporate or home network.
The use of L2TP in VPN networks is often used as it allows the corporation to have more control over authentication
and IP address assignment. An operator may do a first level of authentication, however use PPP to exchange user name
and password, and use IPCP to request an address. To support PPP negotiation between the GGSN and the corporation,
an L2TP tunnel must be setup in the GGSN running a LAC service.
and IP address assignment. An operator may do a first level of authentication, however use PPP to exchange user name
and password, and use IPCP to request an address. To support PPP negotiation between the GGSN and the corporation,
an L2TP tunnel must be setup in the GGSN running a LAC service.
L2TP establishes L2TP control tunnels between LAC and LNS before tunneling the subscriber PPP connections as
L2TP sessions. The LAC service is based on the same architecture as the GGSN and benefits from dynamic resource
allocation and distributed message and data processing. This design allows the LAC service to support over 4000 setups
per second or a maximum of over 3G of throughput. There can be a maximum up to 65535 sessions in a single tunnel
and as many as 500,000 L2TP sessions using 32,000 tunnels per system.
L2TP sessions. The LAC service is based on the same architecture as the GGSN and benefits from dynamic resource
allocation and distributed message and data processing. This design allows the LAC service to support over 4000 setups
per second or a maximum of over 3G of throughput. There can be a maximum up to 65535 sessions in a single tunnel
and as many as 500,000 L2TP sessions using 32,000 tunnels per system.
The LAC sessions can also be configured to be redundant, thereby mitigating any impact of hardware of software
issues. Tunnel state is preserved by copying the information across processor cards.
issues. Tunnel state is preserved by copying the information across processor cards.
Important:
For more information on this feature support, refer L2TP Access Concentrator chapter in System
Enhanced Feature Configuration Guide.
L2TP LNS Support
The system configured as a Layer 2 Tunneling Protocol Network Server (LNS) supports the termination secure Virtual
Private Network (VPN) tunnels between from L2TP Access Concentrators (LACs).
Private Network (VPN) tunnels between from L2TP Access Concentrators (LACs).
The LNS service takes advantage of the high performance PPP processing already supported in the system design and is
a natural evolution from the LAC. The LNS can be used as a standalone, or running alongside a GGSN service in the
same platform, terminating L2TP services in a cost effective and seamless manner.
a natural evolution from the LAC. The LNS can be used as a standalone, or running alongside a GGSN service in the
same platform, terminating L2TP services in a cost effective and seamless manner.
L2TP establishes L2TP control tunnels between LAC and LNS before tunneling the subscriber PPP connections as
L2TP sessions. There can be a maximum of up to 65535 sessions in a single tunnel and up to 500,000 sessions per LNS.
L2TP sessions. There can be a maximum of up to 65535 sessions in a single tunnel and up to 500,000 sessions per LNS.
The LNS architecture is similar to the GGSN and utilizes the concept of a de-multiplexer to intelligently assign new
L2TP sessions across the available software and hardware resources on the platform without operator intervention.
L2TP sessions across the available software and hardware resources on the platform without operator intervention.
Important:
For more information on this feature support, refer L2TP Network Server chapter in System Enhanced
Feature Configuration Guide.
Lawful Intercept
The system supports the Lawful Interception (LI) of subscriber session information. This functionality provides
Telecommunication Service Providers (TSPs) with a mechanism to assist Law Enforcement Agencies (LEAs) in the
monitoring of suspicious individuals (referred to as targets) for potential criminal activity.
Telecommunication Service Providers (TSPs) with a mechanism to assist Law Enforcement Agencies (LEAs) in the
monitoring of suspicious individuals (referred to as targets) for potential criminal activity.