this message is just to inform that on 23th of September i finished with my CCIE SP.
now i am #22148
Sunday, 5 October 2008
Saturday, 23 August 2008
Thursday, 10 April 2008
iewb sp vo2 lab 7
1. it is possible to run auto-rp in sparse only network. ip pim autorp listener
2. is-is over atm interfaces. interface types must match !!!
3. nat should be configured very precisely
2. is-is over atm interfaces. interface types must match !!!
3. nat should be configured very precisely
Tuesday, 25 March 2008
iewb sp vol2 lab3
1. EIGRP - should investigate more
2. redistribution eigrp-->bgp-->rip
3. central services vpn
4. unicast rpf - it is designed for rtbh :)
2. redistribution eigrp-->bgp-->rip
3. central services vpn
4. unicast rpf - it is designed for rtbh :)
Tuesday, 18 March 2008
iewb sp vol2 lab 2
1. it is good to memorize whe to find working example in univercd
2. passive interface under isis process adds interface to the process (not needed to add (ip router isis)
3. ospf can declare link is down by using fast hellows
4. ip nat is always fun
5. ip route always helps
6. frame relay shaping has only one formula. but it is not easy to remember
7. ospf sham links:
2. passive interface under isis process adds interface to the process (not needed to add (ip router isis)
3. ospf can declare link is down by using fast hellows
4. ip nat is always fun
5. ip route always helps
6. frame relay shaping has only one formula. but it is not easy to remember
7. ospf sham links:
- loopbacks used for sham link endpoints must be advertized using BGP (not ospf)
- when mutual redistribution is in place - check that loopback address is not redistributed from ospf to bgp and back
Friday, 14 March 2008
IEWB-SP-VOL2 Lab 1
1. tricks changing default ospf network type on interface (point to multipoint and brodcas)
2. ospf md5 authetication will not work if no key with number is specified
3. mpls TE sometimes not working after interface default ospf network type change
4. for VRF aware NAT do not hessitate to put nat inside statemen on P facing interfaces and define route-map very precisely
5. ip mroute helps to avoid mess introduced in unicast routing after mpls TE tunnel is up
6. always test mcast, provide mroutes to RP
7. QoS - what a mistery :)
7.
2. ospf md5 authetication will not work if no key with number is specified
3. mpls TE sometimes not working after interface default ospf network type change
4. for VRF aware NAT do not hessitate to put nat inside statemen on P facing interfaces and define route-map very precisely
5. ip mroute helps to avoid mess introduced in unicast routing after mpls TE tunnel is up
6. always test mcast, provide mroutes to RP
7. QoS - what a mistery :)
7.
Tuesday, 4 March 2008
OSPF spam-link
link to CCO
http://www.cisco.com/en/US/docs/ios/12_2t/12_2t8/feature/guide/ospfshmk.html
one special note: loopback ip address used for spam link source and destination must be advertized via MP-BGP (redistribute connected of network statement).
If ip addresses will be advertized using ospf you sham link will be flaping countiniously.
http://www.cisco.com/en/US/docs/ios/12_2t/12_2t8/feature/guide/ospfshmk.html
one special note: loopback ip address used for spam link source and destination must be advertized via MP-BGP (redistribute connected of network statement).
If ip addresses will be advertized using ospf you sham link will be flaping countiniously.
Wednesday, 20 February 2008
is-is timers
(lsp-generation-interval, SPF and PRC backoff algoritm):
-Spf-interval 1 1 10
-Prc-interval 1 1 10
-Lsp-gen 5 1 50
other non default is-is parameters:
, ,
-Spf-interval 1 1 10
-Prc-interval 1 1 10
-Lsp-gen 5 1 50
other non default is-is parameters:
Monday, 18 February 2008
understanding QoS
MQ definitions:
bandwidth - minimum guarantied
shape - maximum rate
priority - low latency traffic
police - policing rate for class (rate limit, no queue)
queue-limit - set the queue debth limit
random detect - set the WRED drop policy
good resources:
http://www.opalsoft.net/qos/CDS-22.htm
bandwidth - minimum guarantied
shape - maximum rate
priority - low latency traffic
police - policing rate for class (rate limit, no queue)
queue-limit - set the queue debth limit
random detect - set the WRED drop policy
good resources:
http://www.opalsoft.net/qos/CDS-22.htm
Friday, 15 February 2008
mastering QoS
shape average, peak and Bc,Be,Tc values.
good references:
http://www.cisco.com/en/US/tech/tk543/tk545/technologies_tech_note09186a00800a3a25.shtml
Shaping
A
policy-map MPLS_OUT_01
class class-default
shape average 24000
!
R3#sho policy-map interface ser 0/2/0
Serial0/2/0
Service-policy output: MPLS_OUT_01
Class-map: class-default (match-any)
5802 packets, 4878716 bytes
30 second offered rate 26000 bps, drop rate 2000 bps
Match: any
Traffic Shaping
Target/Average Byte Sustain Excess Interval Increment
Rate Limit bits/int bits/int (ms) (bytes)
24000/24000 1998 7992 7992 333 999
Adapt Queue Packets Bytes Packets Bytes Shaping
Active Depth Delayed Delayed Active
- 63 5205 4401540 4562 3836960 yes
R3#
B
policy-map MPLS_OUT_01
class class-default
shape average 24000 1024
!
R3#sho policy-map interface ser 0/2/0
Serial0/2/0
Service-policy output: MPLS_OUT_01
Class-map: class-default (match-any)
6385 packets, 5368341 bytes
30 second offered rate 27000 bps, drop rate 2000 bps
Match: any
Traffic Shaping
Target/Average Byte Sustain Excess Interval Increment
Rate Limit bits/int bits/int (ms) (bytes)
24000/24000 256 1024 1024 42 128
Adapt Queue Packets Bytes Packets Bytes Shaping
Active Depth Delayed Delayed Active
- 63 5722 4836333 5079 4271753 yes
R3#
C
policy-map MPLS_OUT_01
class class-default
shape average 24000 1024 0
!
R3#sho policy-map interface ser 0/2/0
Serial0/2/0
Service-policy output: MPLS_OUT_01
Class-map: class-default (match-any)
6792 packets, 5711636 bytes
30 second offered rate 26000 bps, drop rate 2000 bps
Match: any
Traffic Shaping
Target/Average Byte Sustain Excess Interval Increment
Rate Limit bits/int bits/int (ms) (bytes)
24000/24000 128 1024 0 42 128
Adapt Queue Packets Bytes Packets Bytes Shaping
Active Depth Delayed Delayed Active
- 65 6085 5144728 5442 4580148 yes
R3#
D
policy-map MPLS_OUT_01
class class-default
shape peak 24000
!
R3#sho policy-map interface ser 0/2/0
Serial0/2/0
Service-policy output: MPLS_OUT_01
Class-map: class-default (match-any)
7258 packets, 6102204 bytes
30 second offered rate 26000 bps, drop rate 0 bps
Match: any
Traffic Shaping
Target/Average Byte Sustain Excess Interval Increment
Rate Limit bits/int bits/int (ms) (bytes)
48000/24000 1998 7992 7992 333 1998
Adapt Queue Packets Bytes Packets Bytes Shaping
Active Depth Delayed Delayed Active
- 0 6580 5577004 5895 4975862 no
R3#
good references:
http://www.cisco.com/en/US/tech/tk543/tk545/technologies_tech_note09186a00800a3a25.shtml
Shaping
A
policy-map MPLS_OUT_01
class class-default
shape average 24000
!
R3#sho policy-map interface ser 0/2/0
Serial0/2/0
Service-policy output: MPLS_OUT_01
Class-map: class-default (match-any)
5802 packets, 4878716 bytes
30 second offered rate 26000 bps, drop rate 2000 bps
Match: any
Traffic Shaping
Target/Average Byte Sustain Excess Interval Increment
Rate Limit bits/int bits/int (ms) (bytes)
24000/24000 1998 7992 7992 333 999
Adapt Queue Packets Bytes Packets Bytes Shaping
Active Depth Delayed Delayed Active
- 63 5205 4401540 4562 3836960 yes
R3#
B
policy-map MPLS_OUT_01
class class-default
shape average 24000 1024
!
R3#sho policy-map interface ser 0/2/0
Serial0/2/0
Service-policy output: MPLS_OUT_01
Class-map: class-default (match-any)
6385 packets, 5368341 bytes
30 second offered rate 27000 bps, drop rate 2000 bps
Match: any
Traffic Shaping
Target/Average Byte Sustain Excess Interval Increment
Rate Limit bits/int bits/int (ms) (bytes)
24000/24000 256 1024 1024 42 128
Adapt Queue Packets Bytes Packets Bytes Shaping
Active Depth Delayed Delayed Active
- 63 5722 4836333 5079 4271753 yes
R3#
C
policy-map MPLS_OUT_01
class class-default
shape average 24000 1024 0
!
R3#sho policy-map interface ser 0/2/0
Serial0/2/0
Service-policy output: MPLS_OUT_01
Class-map: class-default (match-any)
6792 packets, 5711636 bytes
30 second offered rate 26000 bps, drop rate 2000 bps
Match: any
Traffic Shaping
Target/Average Byte Sustain Excess Interval Increment
Rate Limit bits/int bits/int (ms) (bytes)
24000/24000 128 1024 0 42 128
Adapt Queue Packets Bytes Packets Bytes Shaping
Active Depth Delayed Delayed Active
- 65 6085 5144728 5442 4580148 yes
R3#
D
policy-map MPLS_OUT_01
class class-default
shape peak 24000
!
R3#sho policy-map interface ser 0/2/0
Serial0/2/0
Service-policy output: MPLS_OUT_01
Class-map: class-default (match-any)
7258 packets, 6102204 bytes
30 second offered rate 26000 bps, drop rate 0 bps
Match: any
Traffic Shaping
Target/Average Byte Sustain Excess Interval Increment
Rate Limit bits/int bits/int (ms) (bytes)
48000/24000 1998 7992 7992 333 1998
Adapt Queue Packets Bytes Packets Bytes Shaping
Active Depth Delayed Delayed Active
- 0 6580 5577004 5895 4975862 no
R3#
Wednesday, 23 January 2008
Cell mode MPLS
After all this is not so hard.
Going to describe only ATM realted stuff here:
R1a---CellModeATM--R2a
!
ip cef
mpls label protocol ldp
!
!
!
interface Loopback0
ip address 150.1.1.11 255.255.255.255
no ip directed-broadcast
!
interface FastEthernet0/0
ip address 150.1.11.11 255.255.255.0
no ip directed-broadcast
tag-switching ip
!
!
interface ATM3/0
no ip address
no ip directed-broadcast
no atm enable-ilmi-trap
no atm ilmi-keepalive
!
interface ATM3/0.12 tag-switching
ip address 150.1.119.11 255.255.255.0
no ip directed-broadcast
no atm enable-ilmi-trap
mpls label protocol tdp
tag-switching atm control-vc 1 64
tag-switching ip
!
!
router ospf 100
log-adjacency-changes
network 0.0.0.0 255.255.255.255 area 0
!
R2a
!
ip cef
mpls label protocol ldp
!
!
!
interface Loopback0
ip address 150.1.1.12 255.255.255.255
no ip directed-broadcast
!
interface FastEthernet0/0
ip address 150.1.25.12 255.255.255.0
no ip directed-broadcast
tag-switching ip
!
!
interface ATM3/0
no ip address
no ip directed-broadcast
no atm enable-ilmi-trap
no atm ilmi-keepalive
!
interface ATM3/0.12 tag-switching
ip address 150.1.219.12 255.255.255.0
no ip directed-broadcast
no atm enable-ilmi-trap
mpls label protocol tdp
tag-switching ip
!
!
router ospf 100
log-adjacency-changes
passive-interface Loopback0
network 0.0.0.0 255.255.255.255 area 0
!
CellModeATM
!
ip cef
!
!
!
interface Loopback0
ip address 150.1.1.99 255.255.255.255
no ip directed-broadcast
!
!
interface ATM1/0.12 tag-switching
ip address 150.1.119.99 255.255.255.0
no ip directed-broadcast
no atm enable-ilmi-trap
mpls label protocol tdp
tag-switching atm control-vc 1 64
tag-switching ip
!
!
interface ATM2/0.12 tag-switching
ip address 150.1.219.99 255.255.255.0
no ip directed-broadcast
no atm enable-ilmi-trap
mpls label protocol tdp
tag-switching ip
!
!
router ospf 100
log-adjacency-changes
network 0.0.0.0 255.255.255.255 area 0
!
Main issues:
1. ip routing information
2. control pvc (used to exchange ldp/tdp information, igp adjancencies)
3. label distribution protocol (tdp/ldp) - defined globaly, can by changes per interface basis
4. ip cef (cometimes c7200 looses it - on dynamips probably)
5. mpls forwarding table (atm uses PVCs insted of mpls tags)
R1a#sho mpls for
Local Outgoing Prefix Bytes tag Outgoing Next Hop
tag tag or VC or Tunnel Id switched interface
16 Pop tag 150.1.1.1/32 10457 Fa0/0 150.1.11.1
17 18 150.1.1.3/32 14294 Fa0/0 150.1.11.1
18 Pop tag 150.1.13.0/24 0 Fa0/0 150.1.11.1
19 1/33 150.1.25.0/24 0 AT3/0.12 point2point
20 1/34 150.1.56.0/24 0 AT3/0.12 point2point
21 1/35 150.1.1.5/32 0 AT3/0.12 point2point
22 1/36 150.1.1.6/32 21059 AT3/0.12 point2point
23 1/37 150.1.1.12/32 0 AT3/0.12 point2point
24 1/38 150.1.1.99/32 0 AT3/0.12 point2point
25 1/39 150.1.15.0/24 0 AT3/0.12 point2point
26 1/40 150.1.219.0/24 0 AT3/0.12 point2point
R1a#
Going to describe only ATM realted stuff here:
R1a---CellModeATM--R2a
!
ip cef
mpls label protocol ldp
!
!
!
interface Loopback0
ip address 150.1.1.11 255.255.255.255
no ip directed-broadcast
!
interface FastEthernet0/0
ip address 150.1.11.11 255.255.255.0
no ip directed-broadcast
tag-switching ip
!
!
interface ATM3/0
no ip address
no ip directed-broadcast
no atm enable-ilmi-trap
no atm ilmi-keepalive
!
interface ATM3/0.12 tag-switching
ip address 150.1.119.11 255.255.255.0
no ip directed-broadcast
no atm enable-ilmi-trap
mpls label protocol tdp
tag-switching atm control-vc 1 64
tag-switching ip
!
!
router ospf 100
log-adjacency-changes
network 0.0.0.0 255.255.255.255 area 0
!
R2a
!
ip cef
mpls label protocol ldp
!
!
!
interface Loopback0
ip address 150.1.1.12 255.255.255.255
no ip directed-broadcast
!
interface FastEthernet0/0
ip address 150.1.25.12 255.255.255.0
no ip directed-broadcast
tag-switching ip
!
!
interface ATM3/0
no ip address
no ip directed-broadcast
no atm enable-ilmi-trap
no atm ilmi-keepalive
!
interface ATM3/0.12 tag-switching
ip address 150.1.219.12 255.255.255.0
no ip directed-broadcast
no atm enable-ilmi-trap
mpls label protocol tdp
tag-switching ip
!
!
router ospf 100
log-adjacency-changes
passive-interface Loopback0
network 0.0.0.0 255.255.255.255 area 0
!
CellModeATM
!
ip cef
!
!
!
interface Loopback0
ip address 150.1.1.99 255.255.255.255
no ip directed-broadcast
!
!
interface ATM1/0.12 tag-switching
ip address 150.1.119.99 255.255.255.0
no ip directed-broadcast
no atm enable-ilmi-trap
mpls label protocol tdp
tag-switching atm control-vc 1 64
tag-switching ip
!
!
interface ATM2/0.12 tag-switching
ip address 150.1.219.99 255.255.255.0
no ip directed-broadcast
no atm enable-ilmi-trap
mpls label protocol tdp
tag-switching ip
!
!
router ospf 100
log-adjacency-changes
network 0.0.0.0 255.255.255.255 area 0
!
Main issues:
1. ip routing information
2. control pvc (used to exchange ldp/tdp information, igp adjancencies)
3. label distribution protocol (tdp/ldp) - defined globaly, can by changes per interface basis
4. ip cef (cometimes c7200 looses it - on dynamips probably)
5. mpls forwarding table (atm uses PVCs insted of mpls tags)
R1a#sho mpls for
Local Outgoing Prefix Bytes tag Outgoing Next Hop
tag tag or VC or Tunnel Id switched interface
16 Pop tag 150.1.1.1/32 10457 Fa0/0 150.1.11.1
17 18 150.1.1.3/32 14294 Fa0/0 150.1.11.1
18 Pop tag 150.1.13.0/24 0 Fa0/0 150.1.11.1
19 1/33 150.1.25.0/24 0 AT3/0.12 point2point
20 1/34 150.1.56.0/24 0 AT3/0.12 point2point
21 1/35 150.1.1.5/32 0 AT3/0.12 point2point
22 1/36 150.1.1.6/32 21059 AT3/0.12 point2point
23 1/37 150.1.1.12/32 0 AT3/0.12 point2point
24 1/38 150.1.1.99/32 0 AT3/0.12 point2point
25 1/39 150.1.15.0/24 0 AT3/0.12 point2point
26 1/40 150.1.219.0/24 0 AT3/0.12 point2point
R1a#
Monday, 21 January 2008
Copy IOS files via ftp
sometimes is not very easy to copy file to router's flash using ftp.
For example source interface (ip address) problem. this can be tuned using commands:
ip ftp username
ip ftp password
no ip ftp passive
ip ftp source
after that:
copy ftp flash
For example source interface (ip address) problem. this can be tuned using commands:
ip ftp username
ip ftp password
no ip ftp passive
ip ftp source
after that:
copy ftp flash
Friday, 4 January 2008
IS-IS over PPPoE session
will demonstrate how to set up IS-IS over PPPoE seesion.
R3 - client, R6 - server.
!
hostname R3
!
interface FastEthernet0/1
description R6
no ip address
duplex auto
speed auto
pppoe enable
pppoe-client dial-pool-number 1
!
!
interface Dialer1
mtu 1492
ip address 10.1.63.3 255.255.255.0
ip router isis
encapsulation ppp
dialer pool 1
dialer persistent
!
______________________________________________
!
hostname R6
!
vpdn-group te
accept-dialin
protocol pppoe
virtual-template 1
!
interface FastEthernet0/1
no ip address
duplex auto
speed auto
pppoe enable
!
interface Virtual-Template1
ip address 10.1.63.6 255.255.255.0
ip router isis
!
some outputs:
R3#sho vpdn sess
%No active L2F tunnels
%No active L2TP tunnels
%No active PPTP tunnels
PPPoE Session Information Total tunnels 1 sessions 1
PPPoE Session Information
Uniq ID PPPoE RemMAC Port VT VA State
SID LocMAC VA-st
N/A 11 001b.d4f0.2101 Fa0/1 Di1 Vi1 N/A
001b.d503.a439 UP
R3#
R6#sho vpdn session
%No active L2F tunnels
%No active L2TP tunnels
%No active PPTP tunnels
PPPoE Session Information Total tunnels 1 sessions 1
PPPoE Session Information
Uniq ID PPPoE RemMAC Port VT VA State
SID LocMAC VA-st
13 11 001b.d503.a439 Fa0/1 1 Vi3.1 PTA
001b.d4f0.2101 UP
R6#
R3#sho isis nei
System Id Type Interface IP Address State Holdtime Circuit Id
R2 L1 Se0/1/0 24.1.23.2 UP 23 R3.03
R2 L2 Se0/1/0 24.1.23.2 UP 22 R3.03
R6 L1L2 Di1 10.1.63.6 UP 24 02
R3#
R6#sho isis nei
System Id Type Interface IP Address State Holdtime Circuit Id
R3 L1L2 Vi3.1 10.1.63.3 UP 22 00
R6#
main issues:
1. pppoe problems ( do clear intterface dialer 1)
2. isis mtu problems ( examine mtu settings on interfaces and change them or ignore)
task 2 - same but server (R6) autheticates client using pap:
R3#sho runn int dial 1
Building configuration...
Current configuration : 181 bytes
!
interface Dialer1
mtu 1492
ip address 10.1.63.3 255.255.255.0
ip router isis
encapsulation ppp
dialer pool 1
dialer persistent
ppp pap sent-username R3 password 0 R3
end
R6#sho runn inc user
username R3 password 0 R3
R6#sho runn inc user
username R3 password 0 R3
R6#sho runn int virtual-t 1
Building configuration...
Current configuration : 113 bytes
!
interface Virtual-Template1
ip address 10.1.63.6 255.255.255.0
ip router isis
ppp authentication pap
end
R6#
main issues:
1. decide who is initaiting and who is cheking u/p
task 3 - same but server (R6) autheticates client using chap:
R3#sho runn int dial 1
Building configuration...
Current configuration : 187 bytes
!
interface Dialer1
mtu 1492
ip address 10.1.63.3 255.255.255.0
ip router isis
encapsulation ppp
dialer pool 1
dialer persistent
ppp chap hostname R3
ppp chap password 0 R3
end
R3#
R6#sho runn int virtual-t 1
Building configuration...
Current configuration : 114 bytes
!
interface Virtual-Template1
ip address 10.1.63.6 255.255.255.0
ip router isis
ppp authentication chap
end
R6#
task 4 - same but server (R6) allocates ip address for client :
R3#sho runn int dial 1
Building configuration...
Current configuration : 168 bytes
!
interface Dialer1
mtu 1492
ip address dhcp
ip router isis
encapsulation ppp
dialer pool 1
dialer persistent
ppp chap hostname R3
ppp chap password 0 R3
end
R3#
R6#sho runn int virtual-te 1
Building configuration...
Current configuration : 159 bytes
!
interface Virtual-Template1
ip address 10.1.63.6 255.255.255.0
ip router isis
peer default ip address dhcp-pool test_pool
ppp authentication chap
end
R6#sho runn be ip dhcp
!
ip dhcp pool test_pool
network 10.1.63.0 255.255.255.0
!
R3#clear int dial 1
R3#
*Jan 7 05:14:59.200: %DIALER-6-UNBIND: Interface Vi1 unbound from profile Di1
*Jan 7 05:14:59.204: %LINK-3-UPDOWN: Interface Virtual-Access1, changed state to down
*Jan 7 05:15:00.204: %LINEPROTO-5-UPDOWN: Line protocol on Interface Virtual-Access1, changed state to down
R3#
R3#sho dhcp lease
Temp IP addr: 10.1.63.1 for peer on Interface: Dialer1
Temp sub net mask: 255.255.255.0
DHCP Lease server: 10.1.63.6, state: 3 Bound
DHCP transaction id: 1B3C
Lease: 86400 secs, Renewal: 43200 secs, Rebind: 75600 secs
Next timer fires after: 11:47:22
Retry count: 0 Client-ID: cisco-001b.d503.a438-Di1
Client-ID hex dump: 636973636F2D303031622E643530332E
613433382D446931
Hostname: R3
R3#
R3#
R3#
*Jan 7 05:15:20.964: %CLNS-5-ADJCHANGE: ISIS: Adjacency to R6 (Dialer1) Down, hold time expired
*Jan 7 05:15:21.368: %DIALER-6-BIND: Interface Vi1 bound to profile Di1
*Jan 7 05:15:21.372: %LINK-3-UPDOWN: Interface Virtual-Access1, changed state to up
*Jan 7 05:15:24.372: %LINEPROTO-5-UPDOWN: Line protocol on Interface Virtual-Access1, changed state to up
*Jan 7 05:15:24.376: %CLNS-5-ADJCHANGE: ISIS: Adjacency to R6 (Dialer1) Up, new adjacency
R6#sho ip dhcp bi
Bindings from all pools not associated with VRF:
IP address Client-ID/ Lease expiration Type
Hardware address/
User name
10.1.63.1 0063.6973.636f.2d30. Jan 08 2008 05:06 AM Automatic
3031.622e.6435.3033.
2e61.3433.382d.4469.
31
10.1.63.2 5233 Infinite On-demand
R6#
main issues:
1. mtu
2. non /32 address must be assigned to client (same with ospf)
3. on SP IOS image it is necessary to set dialer interface encapsulation. without it not establishes pppoe session. how deducted:
BB3#debug pppoe err
PPPoE protocol errors debugging is on
BB3#clear int dial 1
BB3#debug pppoe elo
*Mar 1 00:02:47.091: PPPoE: no ppp encapsulation configured under dialer interface.
BB3#
R3 - client, R6 - server.
!
hostname R3
!
interface FastEthernet0/1
description R6
no ip address
duplex auto
speed auto
pppoe enable
pppoe-client dial-pool-number 1
!
!
interface Dialer1
mtu 1492
ip address 10.1.63.3 255.255.255.0
ip router isis
encapsulation ppp
dialer pool 1
dialer persistent
!
______________________________________________
!
hostname R6
!
vpdn-group te
accept-dialin
protocol pppoe
virtual-template 1
!
interface FastEthernet0/1
no ip address
duplex auto
speed auto
pppoe enable
!
interface Virtual-Template1
ip address 10.1.63.6 255.255.255.0
ip router isis
!
some outputs:
R3#sho vpdn sess
%No active L2F tunnels
%No active L2TP tunnels
%No active PPTP tunnels
PPPoE Session Information Total tunnels 1 sessions 1
PPPoE Session Information
Uniq ID PPPoE RemMAC Port VT VA State
SID LocMAC VA-st
N/A 11 001b.d4f0.2101 Fa0/1 Di1 Vi1 N/A
001b.d503.a439 UP
R3#
R6#sho vpdn session
%No active L2F tunnels
%No active L2TP tunnels
%No active PPTP tunnels
PPPoE Session Information Total tunnels 1 sessions 1
PPPoE Session Information
Uniq ID PPPoE RemMAC Port VT VA State
SID LocMAC VA-st
13 11 001b.d503.a439 Fa0/1 1 Vi3.1 PTA
001b.d4f0.2101 UP
R6#
R3#sho isis nei
System Id Type Interface IP Address State Holdtime Circuit Id
R2 L1 Se0/1/0 24.1.23.2 UP 23 R3.03
R2 L2 Se0/1/0 24.1.23.2 UP 22 R3.03
R6 L1L2 Di1 10.1.63.6 UP 24 02
R3#
R6#sho isis nei
System Id Type Interface IP Address State Holdtime Circuit Id
R3 L1L2 Vi3.1 10.1.63.3 UP 22 00
R6#
main issues:
1. pppoe problems ( do clear intterface dialer 1)
2. isis mtu problems ( examine mtu settings on interfaces and change them or ignore)
task 2 - same but server (R6) autheticates client using pap:
R3#sho runn int dial 1
Building configuration...
Current configuration : 181 bytes
!
interface Dialer1
mtu 1492
ip address 10.1.63.3 255.255.255.0
ip router isis
encapsulation ppp
dialer pool 1
dialer persistent
ppp pap sent-username R3 password 0 R3
end
R6#sho runn inc user
username R3 password 0 R3
R6#sho runn inc user
username R3 password 0 R3
R6#sho runn int virtual-t 1
Building configuration...
Current configuration : 113 bytes
!
interface Virtual-Template1
ip address 10.1.63.6 255.255.255.0
ip router isis
ppp authentication pap
end
R6#
main issues:
1. decide who is initaiting and who is cheking u/p
task 3 - same but server (R6) autheticates client using chap:
R3#sho runn int dial 1
Building configuration...
Current configuration : 187 bytes
!
interface Dialer1
mtu 1492
ip address 10.1.63.3 255.255.255.0
ip router isis
encapsulation ppp
dialer pool 1
dialer persistent
ppp chap hostname R3
ppp chap password 0 R3
end
R3#
R6#sho runn int virtual-t 1
Building configuration...
Current configuration : 114 bytes
!
interface Virtual-Template1
ip address 10.1.63.6 255.255.255.0
ip router isis
ppp authentication chap
end
R6#
task 4 - same but server (R6) allocates ip address for client :
R3#sho runn int dial 1
Building configuration...
Current configuration : 168 bytes
!
interface Dialer1
mtu 1492
ip address dhcp
ip router isis
encapsulation ppp
dialer pool 1
dialer persistent
ppp chap hostname R3
ppp chap password 0 R3
end
R3#
R6#sho runn int virtual-te 1
Building configuration...
Current configuration : 159 bytes
!
interface Virtual-Template1
ip address 10.1.63.6 255.255.255.0
ip router isis
peer default ip address dhcp-pool test_pool
ppp authentication chap
end
R6#sho runn be ip dhcp
!
ip dhcp pool test_pool
network 10.1.63.0 255.255.255.0
!
R3#clear int dial 1
R3#
*Jan 7 05:14:59.200: %DIALER-6-UNBIND: Interface Vi1 unbound from profile Di1
*Jan 7 05:14:59.204: %LINK-3-UPDOWN: Interface Virtual-Access1, changed state to down
*Jan 7 05:15:00.204: %LINEPROTO-5-UPDOWN: Line protocol on Interface Virtual-Access1, changed state to down
R3#
R3#sho dhcp lease
Temp IP addr: 10.1.63.1 for peer on Interface: Dialer1
Temp sub net mask: 255.255.255.0
DHCP Lease server: 10.1.63.6, state: 3 Bound
DHCP transaction id: 1B3C
Lease: 86400 secs, Renewal: 43200 secs, Rebind: 75600 secs
Next timer fires after: 11:47:22
Retry count: 0 Client-ID: cisco-001b.d503.a438-Di1
Client-ID hex dump: 636973636F2D303031622E643530332E
613433382D446931
Hostname: R3
R3#
R3#
R3#
*Jan 7 05:15:20.964: %CLNS-5-ADJCHANGE: ISIS: Adjacency to R6 (Dialer1) Down, hold time expired
*Jan 7 05:15:21.368: %DIALER-6-BIND: Interface Vi1 bound to profile Di1
*Jan 7 05:15:21.372: %LINK-3-UPDOWN: Interface Virtual-Access1, changed state to up
*Jan 7 05:15:24.372: %LINEPROTO-5-UPDOWN: Line protocol on Interface Virtual-Access1, changed state to up
*Jan 7 05:15:24.376: %CLNS-5-ADJCHANGE: ISIS: Adjacency to R6 (Dialer1) Up, new adjacency
R6#sho ip dhcp bi
Bindings from all pools not associated with VRF:
IP address Client-ID/ Lease expiration Type
Hardware address/
User name
10.1.63.1 0063.6973.636f.2d30. Jan 08 2008 05:06 AM Automatic
3031.622e.6435.3033.
2e61.3433.382d.4469.
31
10.1.63.2 5233 Infinite On-demand
R6#
main issues:
1. mtu
2. non /32 address must be assigned to client (same with ospf)
3. on SP IOS image it is necessary to set dialer interface encapsulation. without it not establishes pppoe session. how deducted:
BB3#debug pppoe err
PPPoE protocol errors debugging is on
BB3#clear int dial 1
BB3#debug pppoe elo
*Mar 1 00:02:47.091: PPPoE: no ppp encapsulation configured under dialer interface.
BB3#
Subscribe to:
Posts (Atom)