Configuring L2TPv3 Tunnels for Layer 2 VPN
The configuration steps involved in the implementation of L2TPv3 on Cisco routers is outlined in Figure 10-4. All steps in the configurations outlined here are performed on the routers in the provider network that connect to the customer network using either Ethernet, serial, ATM, or POS interfaces. To implement L2TPv3, there is no configuration requirement on either the CE routers or the provider core routers. All configurations are performed only on the PE routers, that is, the routers containing the tunnel endpoints for the L2TPv3 tunnel.
Figure 10-4. L2TPv3 Configuration Flowchart
The optional L2TP Class configuration creates a template of L2TP control channel parameters that can be used by different pseudowire classes. If configured, the same L2TP class must be invoked by the pseudowire classes used on the endpoints of the tunnel.
The pseudowire class configuration creates a configuration template for the pseudowire. The pseudowire class configuration is used as a template for session level information for L2TPv3 sessions. This information is used to transport Layer 2 circuit traffic over the pseudowire. The pseudowire configuration specifies the characteristics of the L2TPv3 signaling mechanism, including the data encapsulation type, the control protocol, sequencing, fragmentation, payload-specific options, and IP information. The configuration of manual sessions versus dynamic sessions is also performed in the pseudowire class configuration. The source IP address of the Layer 2 tunnel is also specified in this configuration and is usually a loopback interface.
Binding the interface that is part of the L2TPv3 tunnel to the pseudowire template and the L2TP class is the final step in the L2TPv3 tunnel configuration. The virtual circuit identifier that you configure creates the binding between a pseudowire configured on a PE router and an attachment circuit, and the virtual circuit identifier configured on the PE router at one end of the L2TPv3 control channel must also be configured on the peer PE router at the other end.
In addition to the just mentioned steps, if the PE routers are GSR 12000 series routers, a line card will need to be configured as a tunnel server card. The configuration of a line card on the GSR series as a tunnel server card is outlined in Figure 10-5.
Figure 10-5. L2TPv3 – Configuring Line Card as Tunnel Server