## CentreCOM AR550S 設定例集 2.9 ## 172 L2TPによるリモートアクセス型VPNを使用したIEEE 802.1qタグ付きパケットのブリッジング(VID判定あり) ## ルーターAのコンフィグ ENABLE L2TP ENABLE L2TP SERVER=BOTH ADD L2TP PASSWORD=l2tpA ADD L2TP CALL=remote1 REMOTE=remote1 TYPE=VIRTUAL IP=172.16.0.2 PRECEDENCE=IN PASSWORD=l2tpB CREATE PPP=0 OVER=eth0-ANY SET PPP=0 OVER=eth0-ANY BAP=OFF USER=userA@cug PASSWORD=cugpasswdA LQR=OFF ECHO=ON CREATE PPP=11 OVER=TNL-remote1 IDLE=99999999 BAP=OFF LQR=OFF CREATE VLAN=VLAN10 VID=10 CREATE VLAN=VLAN20 VID=20 CREATE VLAN=VLAN30 VID=30 ADD VLAN=10 PO=4 FRAME=TAG ADD VLAN=20 PO=4 FRAME=TAG ADD VLAN=30 PO=4 FRAME=TAG ENABLE BRIDGE SET BRIDGE STRIPVLANTAG=NO ADD BRIDGE PORT=1 INT=ppp11 ADD VLAN=10 BRIDGE ADD VLAN=20 BRIDGE ADD VLAN=30 BRIDGE ENABLE IP ADD IP INT=ppp0 IP=172.16.0.1 MASK=255.255.255.255 ADD IP INT=vlan10 IP=192.168.10.1 MASK=255.255.255.0 ADD IP ROUTE=0.0.0.0 INT=ppp0 NEXTHOP=0.0.0.0 ENABLE FIREWALL CREATE FIREWALL POLICY=net ENABLE FIREWALL POLICY=net ICMP_F=PING,UNREACH DISABLE FIREWALL POLICY=net IDENTPROXY ADD FIREWALL POLICY=net INT=ppp0 TYPE=PUBLIC ADD FIREWALL POLICY=net INT=vlan10 TYPE=PRIVATE ADD FIREWALL POLICY="net" RULE=1 AC=ALLOW INTERFACE=PPP0 PROTOCOL=UDP PORT=1701 SET FIREWALL POLICY="net" RULE=1 IP=172.16.0.1