The following figure shows the L2TP over IPSec application scenario. The client uses the pre-shared-key command to perform IPSec authentication. How should the IPSec security policy be configured on the LNS?
Note: Select template mode or non-template mode: There are three main modes depending on the characteristics of the peer device: First, remote mobile client access, do not know the client IP address, can not configure remote-address, can only be used Template mode + barbarian mode name authentication; second, communication between two branches, IP address is fixed, non-template mode is used; third, branch office is not fixed IP, then the headquarters uses policy template mode, branch use Strategy mode.
Currently there are no comments in this discussion, be the first to comment!