Hi Everyone,

Anyone here had configured transparent l2TP? We have a l2vpn circuit running and we want the link to be fully transparent. According to cisco " If the routers are not configured to tunnel Layer 2 PDUs, the peer PE router on the far end of the network cannot properly run the STP, CDP, and VTP protocols. ", so what I did is to enable tunnel and add the specific l2procol but the result is not successful.

Topology:

SITE A------| SW1--PE1------l2vpn------PE2--SW2 |------Site B

Current configuration:

SW1 - interface GigabitEthernet1

switchport mode trunk

switchport trunk allowed vlan 10

PE - interface GigabitEthernet0/0.10 l2transport

encapsulation dot1q 10

rewrite ingress tag pop 1 symmetric

l2vpn

Xconnect group lab01

p2p lab01

interface Gig0/0.10

neighbor ipv4 2.2.2.2 pw-id 10

PE2 - interface Gig0/0.10 l2transport

encapsulation dot1q 10

rewrite ingress tag pop 1 symmetric

l2vpn

Xconnect group lab01

p2p lab01

interface Gig0/0.10

neighbor ipv4 1.1.1.1 pw-id 10

SW2 - interface Gig0/0

service instance 10 ethernet

encapsulation untagged

bridge-domain 10

I have added some change on switch to enable transparent L2PT. 1 enabled 802.1Q tunnel on the port add specify the l2protocol.

(C4500)sw1 :interface GigabitEthernet0/0

switchport access vlan 10

switchport mode dot1q-tunnel

l2protocol-tunnel cdp

l2protocol-tunnel lldp

l2protocol-tunnel stp

no cdp enable

(ASR920) sw2 : interface GigabitEthernet0/0

service instance 10 ethernet

encapsulation default (should i use untagged or default to match packets?)

l2protocol tunnel cdp stp lldp (After adding the l2protocol no traffic can pass the circuit?)

bridge-domain 10

Also does by default I cannot run l2 protocol properly without using some sort of tunneling?

Please help to verify if my configuration is correct and if I'm missing something. Im continuously checking this .

Thank you