MPLS VPN Topologies Dial Access
LAC (NAS) completely standard
- Authenticates on NDIS, domain name and builds L2TP tunnel to virtual home gateway
LNS (PE) MPLS VPN router
- For each dial VPN a loopback interface configured in VRF with address in the dial pool address space.
- Single virtual template for all VRFs and users (limited content)
- iMBGP advertise aggregate route of dial pool into VPN (because of the loopback interface)
- RADIUS authentication and download of VRF information onto LNS imposed onto the virtual Access interface (when user dials in)