tunnel avp-hidden

Function

The tunnel avp-hidden command configures transmitting of Attribute Value Pair (AVP) data in the hidden mode.

The undo tunnel avp-hidden command restores the default transmission way of AVP data.

By default, the tunnel transmits AVP data in plain text. The hidden AVP function takes effect only when authentication is configured on both ends of a tunnel.

This command is supported only on the NetEngine 8000 F1A.

Format

tunnel avp-hidden

undo tunnel avp-hidden

Parameters

None

Views

L2TP group view

Default Level

2: Configuration level

Task Name and Operations

Task Name Operations
l2tp write

Usage Guidelines

Usage Scenario

AVP data carries some parameters of the L2TP protocol. For the purpose of security, you can configure AVP data to be transmitted in the hidden mode by using this command.

The following AVP attributes are supported: AVP30(Proxy Authen Name), AVP31(Proxy Authen Response), AVP33(Proxy Authen Response).

Precautions

The authentication passwords must be the same for configuring the AVP hidden function.

Tunnel AAA authentication allows different passwords for both sides while AVP hidden requires the same password for resolution of the hidden AVP data for the algorithm reason. Do not configure the AVP hidden function when configuring AAA authentication; otherwise, the user cannot get online.

Example

# Enable a device to transmit AVP data in the hidden mode.
<HUAWEI> system-view
[~HUAWEI] l2tp-group 1
[*HUAWEI-l2tp-1] tunnel avp-hidden
Parent Topic: L2TP Access Configuration Commands
Copyright © Huawei Technologies Co., Ltd.
Copyright © Huawei Technologies Co., Ltd.
< Previous topic Next topic >