Cisco Cisco IOS Software Release 12.3(4)T

If the dial-out tunnel service is an Autodomain primary service, and the user logs off from the dial-out 
tunnel service, the user is also logged off from all other services.

When you configure the service profile for a dial-out tunnel service, configure the same parameters that 
are used for dial-in tunnel service, along with the additional Cisco attribute value (AV) pair 
“vpdn:dout-type=2” in the user profile. The 2 represents the L2TP protocol. Only the L2TP protocol is 
supported for dial-out tunnels.

SSG L2TP Dial-Out supports overlapping user addresses only on routed point-to-point interfaces in 
host-key mode. If the Host Key feature is not enabled, SSG does not support overlapping users. Even 
with the Host Key featured enabled, a single user cannot connect to two overlapping services.

For more information about SSG in host-key mode, including configuration information, see the 

This section contains the following procedures:

Perform this task to configure a global dial-out service profile. 

For more information about configuring service profiles, see the “Service Profiles” section of the 
Service Selection Gateway new-feature document for Cisco IOS Release 12.2(8)T.

configure terminal

dnis-prefix all service service-name