Page 610

578 Chapter 15: Network Security Technologies

TIP

L2F transports link-level frames, so it does not support multiprotocol tunnels.

Layer 2 Tunneling Protocol (L2TP)

In late 1999, the IETF committee created L2TP, a media-independent multiprotocol
technology. Using L2TP tunneling, an ISP can create a virtual tunnel to link customers' remote
sites and remote users with corporate home networks. At the ISP, there is a device called a Local
Access Concentrator (LAC). The LAC exchanges Point-to-Point Protocol messages with
remote users and communicates by way of L2TP requests and responses with the customers'
L2TP network server (LNS) to establish the tunnels.

TIP

Because L2TP is multiprotocol, this means that IP, IPX, AppleTalk, and other protocols can be
tunneled through L2TP tunnels.

L2TP Access Concentrator (LAC)

A LAC can be a Cisco network-access server connected to the public switched telephone
network (PSTN), as shown in Figure 15-18. The LAC need only implement media for operation
over L2TP. A LAC can connect to the LNS using a local-area network or wide-area network,
such as public or private Frame Relay. The LAC is the initiator of incoming calls and the
receiver of outgoing calls.

Figure 15-18

Layer 2 Access Concentrator

LAC

Cloud

LNS

IBM compatible

87200333.book Page 578 Wednesday, August 22, 2001 1:41 PM