Consider the following example: suppose that PoeAC clients are connected through a wireless link.
Tip | |
---|---|
Interesting chapter: Section 71.17.3, “How to configure a RAS using PPPoE connections with an Ethernet/WiFi network”. |
Configure the maximum number of PPPoE sessions with a value equal to the number of users which you want to enable (for example 10 users), configure the lower Ethernet resource (in this case: Eth-2) and give a name to the Access Concentrator.
[11:43:00] ABILIS_CPX:s p poeac-1 max-ipres:10 acname:wlan ethres:eth-2
COMMAND EXECUTED [11:43:03] ABILIS_CPX:d p poeac-1
RES:PoeAc-1 ------------------------------------------------------------------- Run DESCR: LOG:DS ACT:YES max-ipres:10 ipres-rxbuf:2 ETHRES:Eth-2 ACNAME:wlan EMPTY-EQ-ANY:NO ALL-SERVICES-OFFER:NO ETH-JUMBO-FRAMES:NO - VLAN ----------------------------------------------------------------- VLAN-ID:UNTAG RES:Eth-2 --------------------------------------------------------------------- Run DESCR: LOG:DS MODE:AUTO DUPLEX:HALF MAC-ADDR:FACTORY (00-E0-4C-20-04-29) dma-rxbuf:250 dma-txbuf:25 max-vlans:25 ip-rxbuf:25 arp-rxbuf:5 pppoed-rxbuf:5 pppoes-rxbuf:255
Configuring the PPP-DNS-PRI
and
PPP-DNS-SEC
parameters in the IPRTR resource are
needed to redistribute the IP addresses of the DNS servers to the
clients.
[12:01:24] ABILIS_CPX:s p iprtr PPP-DNS-PRI:62.94.0.1 PPP-DNS-SEC:62.94.0.2
COMMAND EXECUTED [12:11:57] ABILIS_CPX:d p iprtr
RES:Iprtr --------------------------------------------------------------------- Run DESCR:IP_Router_general_properties - General -------------------------------------------------------------- R-ID:AUTO (192.168.029.254) maxroute:500 DFTTTL:255 ps:2048 DEF-LOCAL-AD:0 DEF-STATIC-AD:1 DEF-OSPF-AD:110 DEF-RIP-AD:120 pvc:0 bsvc:0 LINKS:6 virtual:0 - IP Access List ------------------------------------------------------- ACL:YES ACLBYPASS:# COS:ENABLED COSDFT:NORMAL COSBALANCE:NO NORMRATE:50 LOWRATE:50 - IPCOS to 802.1q (VLAN) priority -------------------------------------- LOW:1 NORMAL:0 HIGH:5 - Ppp-Dns -------------------------------------------------------------- PPP-DNS-PRI:062.094.000.001 PPP-DNS-SEC:062.094.000.002
Set act as many IP resources of type PPP as the number of users to manage with the command a res:ip-n subtype:ppp.
[12:11:59] ABILIS_CPX:a res:ip-101 subtype:ppp
COMMAND EXECUTED
Caution | |
---|---|
To set act the changes made, a save conf and an Abilis restart are needed (i.e. With warm start command). |
[12:11:59] ABILIS_CPX:d p ip-101
RES:Ip-101 - IP over PPP (PPP) ------------------------------------------------
- IP over PPP (PPP) ----------------------------------------------------
Run DESCR:
OPSTATE:UP LOG:NO STATE-DETECT:NORMAL
LOWRES:NONE
IPADD:RETRIEVE NEIGH:RETRIEVE
REDIS:EXT HIDE:NO RP:NONE IPSEC:NO VRRP:NO
NAT:NO DIFFSERV:NO DDNS:NO
OUTBUF:100 OUTQUEUE:FAIR MTU:1500
OUTSPL:NO
INBUF:0 mru:1500 SRCV:NO
- TRFA section ---------------------------------------------------------
TRFA:NO
- Ppp ------------------------------------------------------------------
PPPLOG:DS NRTY3:3 PPP-ENC:RAW-PPP RADIUS:NO
- Tcp-MSS/Lcp/IpCp -----------------------------------------------------
TCP-MSS-CLAMP:NO DNS:NO
- Authentication -------------------------------------------------------
USERNAME:
PASSWORD: LOCAL:CHAP,PAP
SERVNAME: REMOTE:NONE
REPEAT:0
The most important parameters are:
LOWRES
Lower resource (must be the correspondent PoEAC
resource).
IPADD
IP address assigned to the PPP Server.
NEIGH
IP address assigned to the PPP Client.
NAT
NAT usage [NO
; INSIDE
;
OUTSIDE
].
LOCAL
Client Authentication protocol.
REMOTE
Server Authentication protocol.
TCP-MSS-CLAMP
It decides whether to perform TCP MSS clamping; if set,
forces PPP to change value of Maximum Segment Size in all TCP
packets to one equal or lower than set with
TCP-MSS-VALUE
option to avoid certain problems
with PPP over Ethernet “black hole”. Also can be used
to reduce link latency at the cost of some bandwidth loss.
DNS
It estabilishes the DNS addresses negotiation
[NO
: no DNS address negotiation is performed;
PROVIDE
: PPP can provide DNS addresses to a
remote host; RETRIEVE
: PPP requests DNS
addresses from a remote host].
SERVICENAME
PPP over Ethernet Service name: name under which this link can be requested from the client. If the client specifies a certain ServiceName, Server answers only if it has link with tha exactly name. If Client specifies no name, it means any line is acceptable.
According to the previous example, configure the IP over PPP resources with the following features:
LOWRES
resource: POEAC-1;
server IP address: 192.168.10.201;
client IP address: 192.168.10.101;
service name: user_1;
enable TCP MSS clamping;
enable DNS negotiation;
[12:48:09] ABILIS_CPX:s p ip-101 lowres:poeac-1 ipadd:192.168.10.201 neigh:192.168.10.101 nat:inside
COMMAND EXECUTED [14:46:44] ABILIS_CPX:s p ip-101 servicename:user_1 tcp-mss-clamp:yes dns:provide local:none remote:chap
COMMAND EXECUTED [14:46:50] ABILIS_CPX:d p ip-101
RES:Ip-101 - Not Saved (SAVE CONF), Not Refreshed (INIT) ---------------------- - IP over PPP (PPP) ---------------------------------------------------- Run DESCR: OPSTATE:UP LOG:NO STATE-DETECT:NORMAL LOWRES:PoeAc-1 IPADD:192.168.010.201 MASK:255.255.255.255 NEIGH:192.168.010.101 REDIS:EXT HIDE:NO RP:NONE IPSEC:NO VRRP:NO NAT:INSIDE UPNP:NO DIFFSERV:NO DDNS:NO OUTBUF:100 OUTQUEUE:FAIR MTU:1500 OUTSPL:NO INBUF:0 mru:1500 SRCV:NO - TRFA section --------------------------------------------------------- TRFA:NO - Ppp ------------------------------------------------------------------ PPPLOG:DS NRTY3:3 PPP-ENC:RAW-PPP RADIUS:NO SERVICENAME:user_1 - Tcp-MSS/Lcp/IpCp ----------------------------------------------------- TCP-MSS-CLAMP:YES TCP-MSS-VALUE:1414 DNS:PROVIDE - Authentication ------------------------------------------------------- USERNAME: PASSWORD: LOCAL:NONE SERVNAME: REMOTE:CHAP REPEAT:0 RES:PoeAc-1 ------------------------------------------------------------------- Run DESCR: LOG:DS ACT:YES max-ipres:10 ipres-rxbuf:2 ETHRES:Eth-2 ACNAME:wlan EMPTY-EQ-ANY:NO ALL-SERVICES-OFFER:NO ETH-JUMBO-FRAMES:NO - VLAN ----------------------------------------------------------------- VLAN-ID:UNTAG RES:Eth-2 --------------------------------------------------------------------- Run DESCR: LOG:DS MODE:AUTO DUPLEX:HALF MAC-ADDR:FACTORY (00-E0-4C-20-04-29) dma-rxbuf:250 dma-txbuf:25 max-vlans:25 ip-rxbuf:25 arp-rxbuf:5 pppoed-rxbuf:5 pppoes-rxbuf:25
Caution | |
---|---|
To set act the changes made, use init res:ip-101 command followed by init ipr and save the configuration with save conf command to make the changes permanent. |
Repeat the same operations for each user by changing the number of
the IP resource (i.e. IP-102
, IP-103
…).
Add an entry in the Users table for each IP resource which you have activated.
[15:53:42] ABILIS_CPX:a user:user_1 ppp:yes pwd:user_1 ppp-res:ip-101
COMMAND EXECUTED [15:54:06] ABILIS_CPX:d user:user_1
- Not Saved (SAVE CONF) ------------------------------------------------------- Parameter: | Value: --------------------+---------------------------------------------------------- USER: user_1 REAL-NAME: user_1 ID: 8 <Read Only> PWD: *** ACT: YES GROUP: CTIP: # CLUS: # ADDRBOOK-SYNC: SYS ADDRBOOK-NUMBER: AUTO ADDRBOOK-OUTDIAL: NONE ADDRBOOK-PUB-ENABLED: SYS OPC-ROLE: USER OPC-VIEW: * OPC-HIDE-NUMBERS: NO OPC-MONITOR: NONE OPC-PRIVACY: NO CHAT: NO CHAT-USER: SYS CHAT-PWD: SYS PPP: YES PPP-AUTH: CHAP PPP-RES: Ip-101 PPP-NEIGH: # PPP-MASK: 255.255.255.255 PPP-ROUTE: # -------------------------------------------------------------------------------
The command must be repeated for all other users.
The connection to the Access Concentrator can be done by using standard Windows PPPoE client or common routers that support this protocol.