Some site tests L2TP service and use Ethernet 500 client port as connection of LAC and MA5200G. Configure and test at MA5200G and use domain "ceshi"; correctly configure relevant authentication, account policy and address pool. Through test user uses Ethernet 500 port to dial but fails to pass authentication.
Change configuration at MA5200G and configure authentication, account policy and address pool under default1. The problem is solved.
When Ethernet 500 client port enables LAC, username does not contain domain name when Ethernet 500 sends LNS packets. For L2TP user not containg domain name, MA5200G authenticates under default1 domain.
Username sent by Ethernet 500 client port does not contain domain name. Regardless of username, it is authenticated under default 1 at MA5200G. It is useless under other domain name. Configure relevant authentication, account policy and address pool for test.