Sorry,

it's a typo error. Yes we have a virtual-template 2 :

interface Virtual-Template2 type serial

description VT2

mtu 1460

ip unnumbered Loopback1

ip nat inside

ip virtual-reassembly

ip tcp adjust-mss 1420

ip policy route-map INTERNET_VT2

timeout absolute 1800 0

no peer default ip address

ppp authentication chap pap Telco-DSL-AAA

ppp authorization Telco-DSL-AAA

ppp accounting Telco-DSL-AAA

ppp ipcp address required

ppp ipcp address accept

!

Also, can you run 'debug vpdn l2x-event' on the LAC and see if LAC is initiating a L2TP tunnel to the LNS?

Regards,

Subeh

When i launch that command :

debug vpdn l2x-event'

And all others command, i hav no debug log on console about vpdn or ppp. I don't understand why. debug log worked well on 2821..

And Loopback interfaces :

interface Loopback0

ip address a.b.c.d 255.255.255.255

!

interface Loopback1

ip address e.f.g.h 255.255.255.255

!

interface Loopback2

ip address i.j.k.l 255.255.255.255

!

The debug i suggested was to be run on the LAC and not on LNS which you're ASR is configured as.

Regards,

Subeh

The LAC is owned by another provider, we can't acces it... Do you know an issue on ASR1K whereno debug log is produced about aaa or vpnd ?

No, there is no such bug that i know of. Where are you checking the logs i.e. in the logging buffer(show log) or on router's console or in SYSLOG? Also what have you configured for logging on the ASR?

Regards,

Subeh

thanks  for reply.

Router console with serial link or syslog on another server. We only see log about enter configure terminal or command typed but absolutly no log about aaa or vpdn whereas debug log are enabled

So, you've configured for SYSLOG? Can you paste the logging commands you've on ASR, here?

Logs will be shown when ASR receives a L2TP tunnel request from the LAC. Are you able to ping the LAC's IP?

Regards

Subeh

I'm looking for logs on our syslog server. I'll give you soon. Thanks.

Sorry for delay. Here the log that was repeated when config was modified :

May 19 09:33:40 X.Y.Z.1 510: May 19 08:33:42.502: VT[Vt1]:Subinterfaces may be created using this config

May 19 09:33:40 X.Y.Z.1 511: May 19 08:33:42.502: VT[Vt1]:Generated an interface command list

May 19 09:33:40 X.Y.Z.1 512: May 19 08:33:42.502: VT[Vt1]:Generated a subinterface command list

May 19 09:33:40 X.Y.Z.1 513: May 19 08:33:42.502: VT[Vt1]:Generated a ppp_only interface command list

May 19 09:33:40 X.Y.Z.1 514: May 19 08:33:42.502: VT[Vt1]:Generated a ppp_only subinterface command list

May 19 09:33:40 X.Y.Z.1 515: May 19 08:33:42.502: VT:Clean up dirty vaccess queue, size 1

May 19 09:33:40 X.Y.Z.1 516: May 19 08:33:42.503: RADIUS: Removing all radius source-int. pointing to Virtual-Access1.1

May 19 09:33:43 X.Y.Z.1 517: May 19 08:33:44.884: AAA/AUTHOR: auth_need : user= 'root' ruser= 'LNS1'rem_addr= 'X.Y.Z.13' priv= 0 list= '' AUTHOR-TYPE= 'commands'

May 19 09:34:32 X.Y.Z.1 518: May 19 08:34:35.190: AAA/AUTHOR: auth_need : user= 'root' ruser= 'LNS1'rem_addr= 'X.Y.Z.13' priv= 0 list= '' AUTHOR-TYPE= 'commands'

May 19 09:34:33 X.Y.Z.1 519: May 19 08:34:35.190: %SYS-5-CONFIG_I: Configured from console by root on vty0 (X.Y.Z.13)

Any idea ?

What do you think of configuration ? Does it seems good for you ?

Thanks.

Sorry, was busy in the day so didn't get a time to check this. So, i see alot of mesages now in your last output. Anything changed? I'd say your configuration is complete and contains all the commands required. Since you're able to see debugs now, can you check show l2tp tunnel all?

Regards,

Subeh