Configuring the PPPoE Client

Similar documents
PIX/ASA: PPPoE Client Configuration Example

PIX/ASA/FWSM Platform User Interface Reference

Cisco DSL Router Configuration and Troubleshooting Guide Cisco DSL Router Acting as a PPPoE Client with a Dynamic IP Address

Provisioning Broadband Aggregators Topics

Configuring PPP over Ethernet with NAT

Configuring PPP over Ethernet with NAT

Added Features. 1. PPTP (Point-to-Point Tunneling Protocol)

Interfaces for Firepower Threat Defense

Configuring a Cisco 827 Router to Support PPPoE Clients, Terminating on a Cisco 6400 UAC

isco Cisco PPPoE Baseline Architecture for the Cisco UAC

L2TP Configuration. L2TP Overview. Introduction. Typical L2TP Networking Application

Completing Interface Configuration (Transparent Mode)

Cisco PPPoE Baseline Architecture for the Cisco UAC 6400

Getting Started. Getting Started with Your Platform Model. Factory Default Configurations CHAPTER

DPX8000 Series Deep Service Switching Gateway User Configuration Guide BRAS Service Board Module v1.0

DHCP and DDNS Services

Interfaces for Firepower Threat Defense

UIP1869V User Interface Guide

Service Managed Gateway TM. Configuring Dual ADSL PPP with Worker Standby or Load Share Mode

L2TP over IPsec. About L2TP over IPsec/IKEv1 VPN

Finding Feature Information

material. For more information on how to get additional questions, please see a.

Point-to-Point Protocol (PPP)

Configuring DHCP, DDNS, and WCCP Services

QoS: Classification, Policing, and Marking on LAC Configuration Guide, Cisco IOS Release 12.4T

Configuring Client-Initiated Dial-In VPDN Tunneling

PPPoE on ATM. Finding Feature Information. Prerequisites for PPPoE on ATM. Restrictions for PPPoE on ATM

Configuring NAS-Initiated Dial-In VPDN Tunneling

L2TP Network Server. LNS Service Operation

AN INTRODUCTION TO PPPOE

Configuring L2TP over IPsec

DHCP and DDNS Services

Feature-by-Feature Router Configurations

RADIUS Logical Line ID

BCRAN. Section 9. Cable and DSL Technologies

Broadband Access Aggregation and DSL Configuration Guide, Cisco IOS XE Release 3S

Configuring the Cisco 827 Router as a PPPoE Client With NAT

Using the Management Interfaces

PPP Configuration Options

PPP configuration commands

Cisco CP Express Wizard

HP VSR1000 Virtual Services Router

PPPoE Technology White Paper

Viewing Network Status, page 116. Configuring IPv4 or IPv6 Routing, page 116. Configuring the WAN, page 122. Configuring a VLAN, page 137

Configuring Dynamic DNS

2. The next screen will tell you to press the lighted Cisco logo on the Router. After you have pressed the logo, click the Next button to continue.

Table of Contents. D-Link DSL-526B User Manual 1

Terminal Services Commands translate lat

Configuring Interfaces (Transparent Mode)

RADIUS Tunnel Preference for Load Balancing

Table of Contents. D-Link DSL-2540U User Manual 1

Implementing ADSL and Deploying Dial Access for IPv6

Troubleshooting ISG with Session Monitoring and Distributed Conditional Debugging

Configuration Guide TL-ER5120/TL-ER6020/TL-ER REV3.0.0

How to configure MB5000 Serial Port Bridge mode

The MSCHAP Version 2 feature (introduced in Cisco IOS Release 12.2(2)XB5) allows Cisco routers to

Asheville-Buncombe Technical Community College Department of Networking Technology. Course Outline

RADIUS Tunnel Attribute Extensions

PPTP (Point-to-Point Tunneling Protocol) Features

15c. PPPoE. Encapsulation and Tunneling. The Dialer Interface. Client Dialer Interface

Table of Contents 1 PPP Configuration Commands PPPoE Configuration Commands 2-1

Effective with Cisco IOS Release 15.0(1)M, the ssg default-network command is not available in Cisco IOS software.

PIX/ASA as a DHCP Server and Client Configuration Example

Cisco Virtual Office End User Instructions for Cisco 871 and Cisco 881 Router Set Up at Home or Small Office

Configuring PPP over ATM with NAT

ppp accounting through quit

This feature was introduced. This feature was integrated into Cisco IOS Release 12.2(27)SBA.

IP Tunneling. GRE Tunnel IP Source and Destination VRF Membership. Tunnel VRF CHAPTER

OV504R6. Quick Start Guide

PPPoE Client DDR Idle-Timer

Cisco Small Business RV320/RV325 Gigabit Dual WAN VPN Router

Using the Command Line Interface

DSL-X11. One Port ADSL Modem Router. User Manual

VPN Client. VPN Client Overview. VPN Client Prerequisites. VPN Client Configuration Task Flow. Before You Begin

Figure 4-6: The Router with the Internet Connection is connected through the Internet Port

CHAPTER 7 ADVANCED ADMINISTRATION PC

Juniper Networks Certified Internet Associate (JNCIA- E)

User Guide TL-R470T+/TL-R480T REV9.0.2

Configuring Static and Default Routes

802.1P CoS Bit Set for PPP and PPPoE Control Frames

IPv6 and xdsl. Athanassios Liakopoulos Slovenian IPv6 Training, Ljubljana, May 2010

Point-to-Point Protocol (PPP)

Point-to-Point Protocol (PPP) Accessing the WAN Chapter 2

Remote Access MPLS-VPNs

The VPN menu and its options are not available in the U.S. export unrestricted version of Cisco Unified Communications Manager.

Configuring a VPN Using Easy VPN and an IPSec Tunnel, page 1

WIALAN Technologies, Inc. Unit Configuration Thursday, March 24, 2005 Version 1.1

Peplink Balance Multi-WAN Routers

DPX8000 Series Deep Service Switching Gateway User Configuration Guide Probe Service Board Module v1.0

PPPoE Session Limit per NAS Port

Configuring PPPoE Client on the Cisco 2600 to Connect to a Non Cisco DSL CPE

Lab 8.5.2: Troubleshooting Enterprise Networks 2

Contents. Introduction

Content 1 OVERVIEW HARDWARE DESCRIPTION HARDWARE INSTALLATION PC CONFIGURATION GUIDE... 5 WEB-BASED MANAGEMENT GUIDE...

Copyright Statement. Disclaimer. Technical Support

Access Rules. Controlling Network Access

Configuring Layer 2 Tunneling Protocol (L2TP) over IPSec

G806+H3C WSR realize VPN networking

SLIP and PPP Configuration Commands

PPP over Frame Relay

Transcription:

CHAPTER 72 This section describes how to configure the PPPoE client provided with the ASA. It includes the following topics: PPPoE Client Overview, page 72-1 Username and Password, page 72-2 Enabling PPPoE, page 72-3 Using PPPoE with a Fixed IP Address, page 72-3 Monitoring and Debugging the PPPoE Client, page 72-4 Using Related Commands, page 72-5 PPPoE Client Overview PPPoE combines two widely accepted standards, Ethernet and PPP, to provide an authenticated method of assigning IP addresses to client systems. PPPoE clients are typically personal computers connected to an ISP over a remote broadband connection, such as DSL or cable service. ISPs deploy PPPoE because it supports high-speed broadband access using their existing remote access infrastructure and because it is easier for customers to use. PPPoE provides a standard method of employing the authentication methods of the Point-to-Point Protocol (PPP) over an Ethernet network. When used by ISPs, PPPoE allows authenticated assignment of IP addresses. In this type of implementation, the PPPoE client and server are interconnected by Layer 2 bridging protocols running over a DSL or other broadband connection. PPPoE is composed of two main phases: Active Discovery Phase In this phase, the PPPoE client locates a PPPoE server, called an access concentrator. During this phase, a Session ID is assigned and the PPPoE layer is established. PPP Session Phase In this phase, PPP options are negotiated and authentication is performed. Once the link setup is completed, PPPoE functions as a Layer 2 encapsulation method, allowing data to be transferred over the PPP link within PPPoE headers. At system initialization, the PPPoE client establishes a session with the access concentrator by exchanging a series of packets. Once the session is established, a PPP link is set up, which includes authentication using Password Authentication protocol (PAP). Once the PPP session is established, each packet is encapsulated in the PPPoE and PPP headers. 72-1

Username and Password Chapter 72 PPPoE is not supported when failover is configured on the ASA, or in multiple context or transparent mode. PPPoE is only supported in single, routed mode, without failover. Username and Password To configure the username and password used to authenticate the ASA to the access concentrator, use the vpdn command. To use the vpdn command, you first define a VPDN group and then create individual users within the group. To configure a PPPoE username and password, perform the following steps: Step 1 Step 2 Define the VPDN group to be used for PPPoE using the following command: hostname(config)# vpdn group group_name request dialout pppoe In this command, replace group_name with a descriptive name for the group, such as pppoe-sbc. If your ISP requires authentication, select an authentication protocol by entering the following command: hostname(config)# vpdn group group_name ppp authentication {chap mschap pap} Replace group_name with the same group name you defined in the previous step. Enter the appropriate keyword for the type of authentication used by your ISP: CHAP Challenge Handshake Authentication Protocol MS-CHAP Microsoft Challenge Handshake Authentication Protocol Version 1 PAP Password Authentication Protocol When using CHAP or MS-CHAP, the username may be referred to as the remote system name, while the password may be referred to as the CHAP secret. Step 3 Step 4 Associate the username assigned by your ISP to the VPDN group by entering the following command: hostname(config)# vpdn group group_name localname username Replace group_name with the VPDN group name and username with the username assigned by your ISP. Create a username and password pair for the PPPoE connection by entering the following command: hostname(config)# vpdn username username password password [store-local] Replace username with the username and password with the password assigned by your ISP. The store-local option stores the username and password in a special location of NVRAM on the ASA. If an Auto Update Server sends a clear config command to the ASA and the connection is then interrupted, the ASA can read the username and password from NVRAM and re-authenticate to the Access Concentrator. 72-2

Chapter 72 Enabling PPPoE Enabling PPPoE You must complete the configuration using the vpdn command, described in Configuring the PPPoE Client Username and Password, before enabling PPPoE. The PPPoE client functionality is turned off by default. To enable PPPoE, perform the following steps: Step 1 Enable the PPPoE client by entering the following command from interface configuration mode: hostname(config-if)# ip address pppoe [setroute] The setroute option sets the default routes when the PPPoE client has not yet established a connection. When using the setroute option, you cannot have a statically defined route in the configuration. PPPoE is not supported in conjunction with DHCP because with PPPoE the IP address is assigned by PPP. The setroute option causes a default route to be created if no default route exists. The default router is the address of the access concentrator. The maximum transmission unit (MTU) size is automatically set to 1492 bytes, which is the correct value to allow PPPoE transmission within an Ethernet frame. Reenter this command to reset the DHCP lease and request a new lease. If PPPoE is enabled on two interfaces (such as a primary and backup interface), and you do not configure dual ISP support (see the Monitoring a Static or Default Route section on page 22-6), then the ASA can only send traffic through the first interface to acquire an IP address. For example: hostname(config)# interface gigabitethernet 0/0 hostname(config-if)# ip address pppoe Step 2 Specify a VPDN group for the PPPoE client to use with the following command from interface configuration mode (optional): hostname(config-if)# pppoe client vpdn group grpname grpname is the name of a VPDN group. If you have multiple VPDN groups configured, and you do not specify a group with the pppoe client vpdn group command, the ASA may randomly choose a VPDN group. To avoid this, specify a VPDN group. Using PPPoE with a Fixed IP Address You can also enable PPPoE by manually entering the IP address, using the ip address command from interface configuration mode in the following format: hostname(config-if)# ip address ipaddress mask pppoe 72-3

Monitoring and Debugging the PPPoE Client Chapter 72 This command causes the ASA to use the specified address instead of negotiating with the PPPoE server to assign an address dynamically. Replace ipaddress and mask with the IP address and subnet mask assigned to your ASA. For example: hostname(config-if)# ip address outside 201.n.n.n 255.255.255.0 pppoe The setroute option is an option of the ip address command that you can use to allow the access concentrator to set the default routes when the PPPoE client has not yet established a connection. When using the setroute option, you cannot have a statically defined route in the configuration. Monitoring and Debugging the PPPoE Client Use the following command to display the current PPPoE client configuration information: hostname# show ip address outside pppoe Use the following command to enable or disable debugging for the PPPoE client: hostname# [no] debug pppoe {event error packet} The following summarizes the function of each keyword: event Displays protocol event information error Displays error messages packet Displays packet information Use the following command to view the status of PPPoE sessions: hostname# show vpdn session [l2tp pppoe] [id sess_id packets state window] The following example shows a sample of information provided by this command: hostname# show vpdn Tunnel id 0, 1 active sessions time since change 65862 secs Remote Internet Address 10.0.0.1 Local Internet Address 199.99.99.3 Remote Internet Address is 10.0.0.1 Session state is SESSION_UP Time since event change 65865 secs, interface outside PPP interface id is 1 hostname# hostname# show vpdn session PPPoE Session Information (Total tunnels=1 sessions=1) Remote Internet Address is 10.0.0.1 Session state is SESSION_UP Time since event change 65887 secs, interface outside PPP interface id is 1 hostname# hostname# show vpdn tunnel PPPoE Tunnel Information (Total tunnels=1 sessions=1) Tunnel id 0, 1 active sessions time since change 65901 secs Remote Internet Address 10.0.0.1 72-4

Chapter 72 Clearing the Configuration Local Internet Address 199.99.99.3 hostname# Clearing the Configuration To remove all vpdn group commands from the configuration, use the clear configure vpdn group command in global configuration mode: hostname(config)# clear configure vpdn group To remove all vpdn username commands, use the clear configure vpdn username command: hostname(config)# clear configure vpdn username Entering either of these commands has no affect upon active PPPoE connections. Using Related Commands Use the following command to cause the DHCP server to use the WINS and DNS addresses provided by the access concentrator as part of the PPP/IPCP negotiations: hostname(config)# dhcpd auto_config [client_ifx_name] This command is only required if the service provider provides this information as described in RFC 1877. The client_ifx_name parameter identifies the interface supported by the DHCP auto_config option. At this time, this keyword is not required because the PPPoE client is only supported on a single outside interface. 72-5

Using Related Commands Chapter 72 72-6

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback