Cisco Cisco Packet Data Gateway (PDG)
tunnel-authentication
Enables tunnel authentication. When tunnel authentication is enabled, a configured shared secret is used to
ensure that the LAC service is communicating with an authorized peer LNS. The shared secret is configured
by the peer-lns command in the LAC Service Configuration mode, the tunnel l2tp command in the Subscriber
Configuration mode, or the Tunnel-Password attribute in the subscribers RADIUS profile.
ensure that the LAC service is communicating with an authorized peer LNS. The shared secret is configured
by the peer-lns command in the LAC Service Configuration mode, the tunnel l2tp command in the Subscriber
Configuration mode, or the Tunnel-Password attribute in the subscribers RADIUS profile.
Product
GGSN
PDSN
P-GW
SAEGW
Privilege
Security Administrator, Administrator
Command Modes
Exec > Global Configuration > Context Configuration > LAC Service Configuration
configure > context context_name > lac-service service_name
Entering the above command sequence results in the following prompt:
[
context_name
]
host_name
(config-lac-service)#
Syntax Description
[ no ] tunnel-authentication
no
Disables tunnel authentication.
Tunnel authentication is enabled by default.
Usage Guidelines
Disable or enable the usage of secrets to authenticate a peer LNS when setting up a tunnel.
Examples
To disable tunnel authentication, use the following command:
no tunnel-authentication
no tunnel-authentication
To re-enable tunnel authentication, use the following command:
tunnel-authentication
tunnel-authentication
Command Line Interface Reference, Modes I - Q, StarOS Release 19
402
LAC Service Configuration Mode Commands
tunnel-authentication