[nsp]

From: Dave VanAuken (dave@hawk-systems.com)
Date: Thu Jul 05 2001 - 13:15:04 EDT

Recently changed IP blocks during a redeployment, and must have missed
something.

NAS is routable (can ping/trace/telnet to and from)
DNS works from the NAS

Dial-users can connect and are authenticated against radius database

once connected we cannot get any pings (even to NAS) from the dialup
customer to the network or the internet

brief login debug and configuration included below

Appreciate any insight... think I have been looking at this too long.

Dave

CONFIG#######################
as0#show run
Building configuration...

Current configuration : 3828 bytes
!
! Last configuration change at 12:51:01 EDT Thu Jul 5 2001
! NVRAM config last updated at 12:24:23 EDT Thu Jul 5 2001 by admin
!
version 12.1
no service single-slot-reload-enable
service timestamps debug datetime msec localtime show-timezone
service timestamps log datetime msec localtime show-timezone
service password-encryption
!
hostname as0
!
no logging rate-limit
aaa new-model
aaa authentication login default group radius local
aaa authentication login consoleport local
aaa authentication ppp default group radius local
aaa authorization network default group radius
aaa accounting network default wait-start group radius
enable secret 5 eNcOdEd
!
username admin password 7 eNcOdEd
spe 1/0 1/3
 firmware location system:/ucode/mica_port_firmware
!
!
resource-pool disable
!
clock timezone EDT -5
clock summer-time EDT recurring
clock calendar-valid
ip subnet-zero
no ip source-route
no ip finger
ip domain-name mydomain.net
ip host dns2 204.60.168.7
ip host dns1 204.60.168.6
ip name-server 204.60.168.6
ip name-server 204.60.168.7
!
virtual-profile virtual-template 1
multilink virtual-template 1
isdn switch-type primary-dms100
partition flash 2 8 8
!
!
!
controller T1 0
 framing esf
 clock source line primary
 linecode b8zs
 pri-group timeslots 1-24
 description Bell T1 905-728-3389 > 23B:1D
!
controller T1 1
 shutdown
 clock source line secondary 1
!
controller T1 2
 shutdown
 clock source line secondary 2
!
controller T1 3
 shutdown
 clock source line secondary 3
!
controller T1 4
 shutdown
 clock source line secondary 4
!
controller T1 5
 shutdown
 clock source line secondary 5
!
controller T1 6
 shutdown
 clock source line secondary 6
!
controller T1 7
 shutdown
 clock source line secondary 7
!
!
interface Ethernet0
 no ip address
 shutdown
!
interface Virtual-Template1
 ip unnumbered FastEthernet0
 ip tcp header-compression passive
 no keepalive
 peer default ip address pool default
 ppp authentication chap pap
 ppp multilink
 multilink max-links 2
!
interface Serial0
 no ip address
 shutdown
 no fair-queue
 clockrate 2015232
!
interface Serial1
 no ip address
 shutdown
 no fair-queue
 clockrate 2015232
!
interface Serial2
 no ip address
 shutdown
 no fair-queue
 clockrate 2015232
!
interface Serial3
 no ip address
 shutdown
 no fair-queue
 clockrate 2015232
!
interface Serial0:23
 ip unnumbered FastEthernet0
 encapsulation ppp
 ip mroute-cache
 no keepalive
 dialer-group 1
 isdn switch-type primary-dms100
 isdn tei-negotiation first-call
 isdn incoming-voice modem
 no peer default ip address
 no fair-queue
 ppp max-bad-auth 3
 ppp authentication chap pap
 ppp multilink
!
interface FastEthernet0
 ip address 204.60.168.4 255.255.255.0
 no ip mroute-cache
 duplex auto
 speed auto
!
interface Group-Async0
 ip unnumbered FastEthernet0
 encapsulation ppp
 async mode interactive
 peer default ip address pool default
 no fair-queue
 ppp max-bad-auth 3
 ppp authentication chap pap
 ppp multilink
 group-range 1 48
!
ip local pool default 204.60.168.137 204.60.168.254
ip default-gateway 204.60.168.1
no ip classless
ip route 0.0.0.0 0.0.0.0 204.60.168.1
ip http server
!
dialer-list 1 protocol ip permit
snmp-server community something RO 8
snmp-server location as0
snmp-server contact sysadmin@mydomain.net
radius-server host 204.60.168.10 auth-port 1645 acct-port 1646
radius-server retransmit 3
radius-server key 7 eNcOdEd
!
line con 0
 login authentication consoleport
 transport input none
line 1 48
 autoselect during-login
 autoselect ppp
 modem Dialin
line aux 0
line vty 0
 login authentication consoleport
line vty 1 4
!
end

as0#

DEBUG EXERPT ##########################################

Jul 5 12:34:56.167 EDT: %ISDN-6-CONNECT: Interface Serial0:14 is now
connected
to 9057259084
Jul 5 12:34:56.667 EDT: TTY50: EXEC creation
Jul 5 12:34:56.667 EDT: TTY50: set timer type 10, 30 seconds
Jul 5 12:34:56.671 EDT: TTY50: set timer type 10, 30 seconds
Jul 5 12:34:56.675 EDT: TTY50: create timer type 1, 600 seconds
Jul 5 12:34:56.679 EDT: TTY50: set timer type 10, 30 seconds
Jul 5 12:34:56.735 EDT: TTY50: Line reset by "Virtual Exec"
Jul 5 12:34:56.735 EDT: TTY50: Modem: (unknown)->READY
Jul 5 12:34:56.735 EDT: TTY50: no timer type 0 to destroy
Jul 5 12:34:56.735 EDT: TTY50: destroy timer type 1
Jul 5 12:34:56.735 EDT: TTY50: no timer type 3 to destroy
Jul 5 12:34:56.735 EDT: TTY50: no timer type 4 to destroy
Jul 5 12:34:56.735 EDT: TTY50: no timer type 2 to destroy
Jul 5 12:35:18.847 EDT: TTY15: DSR came up
Jul 5 12:35:18.847 EDT: tty15: Modem: IDLE->(unknown)
Jul 5 12:35:18.847 EDT: TTY15: EXEC creation
Jul 5 12:35:18.847 EDT: TTY15: set timer type 10, 30 seconds
Jul 5 12:35:18.895 EDT: TTY15: Autoselect(2) sample 7E
Jul 5 12:35:18.895 EDT: TTY15: Autoselect(2) sample 7EFF
Jul 5 12:35:18.895 EDT: TTY15: Autoselect(2) sample 7EFF7D
Jul 5 12:35:18.895 EDT: TTY15: Autoselect(2) sample 7EFF7D23
Jul 5 12:35:18.895 EDT: TTY15 Autoselect cmd: ppp negotiate
Jul 5 12:35:18.899 EDT: TTY15: EXEC creation
Jul 5 12:35:18.899 EDT: TTY15: create timer type 1, 600 seconds
Jul 5 12:35:18.899 EDT: As15: ip_get_pool using pool default
Jul 5 12:35:18.899 EDT: As15: Pools to search : default
Jul 5 12:35:18.899 EDT: As15: Pool default returned address =
204.60.168.150
Jul 5 12:35:19.031 EDT: TTY15: destroy timer type 1
Jul 5 12:35:19.031 EDT: TTY15: no timer type 0 to destroy
Jul 5 12:35:20.899 EDT: As15 LCP: I CONFREQ [Closed] id 1 len 50
Jul 5 12:35:20.899 EDT: As15 LCP: ACCM 0x00000000 (0x020600000000)
Jul 5 12:35:20.899 EDT: As15 LCP: MagicNumber 0x1332738B
(0x05061332738B)
Jul 5 12:35:20.899 EDT: As15 LCP: PFC (0x0702)
Jul 5 12:35:20.899 EDT: As15 LCP: ACFC (0x0802)
Jul 5 12:35:20.899 EDT: As15 LCP: Callback 6 (0x0D0306)
Jul 5 12:35:20.899 EDT: As15 LCP: MRRU 1614 (0x1104064E)
Jul 5 12:35:20.899 EDT: As15 LCP: EndpointDisc 1 Local
Jul 5 12:35:20.899 EDT: As15 LCP:
(0x13170149D3B764B8EB4228B5834DAE18)
Jul 5 12:35:20.899 EDT: As15 LCP: (0xC06F1400000000)
Jul 5 12:35:20.899 EDT: Unthrottle 15
Jul 5 12:35:20.899 EDT: As15 LCP: Lower layer not up, Fast Starting
Jul 5 12:35:20.899 EDT: As15 PPP: Treating connection as a dedicated
line
Jul 5 12:35:20.899 EDT: As15 PPP: Phase is ESTABLISHING, Active Open
[0 sess, 1
 load]
Jul 5 12:35:20.899 EDT: As15 LCP: O CONFREQ [Closed] id 1 len 35
Jul 5 12:35:20.899 EDT: As15 LCP: ACCM 0x000A0000 (0x0206000A0000)
Jul 5 12:35:20.899 EDT: As15 LCP: AuthProto CHAP (0x0305C22305)
Jul 5 12:35:20.899 EDT: As15 LCP: MagicNumber 0x0423BFB1
(0x05060423BFB1)
Jul 5 12:35:20.899 EDT: As15 LCP: PFC (0x0702)
Jul 5 12:35:20.899 EDT: As15 LCP: ACFC (0x0802)
Jul 5 12:35:20.899 EDT: As15 LCP: MRRU 1524 (0x110405F4)
Jul 5 12:35:20.899 EDT: As15 LCP: EndpointDisc 1 Local
(0x130601617330)
Jul 5 12:35:20.903 EDT: As15 LCP: O CONFREJ [REQsent] id 1 len 7
Jul 5 12:35:20.903 EDT: As15 LCP: Callback 6 (0x0D0306)
Jul 5 12:35:20.903 EDT: %LINK-3-UPDOWN: Interface Async15, changed
state to up
Jul 5 12:35:21.523 EDT: As15 LCP: I CONFACK [REQsent] id 1 len 35
Jul 5 12:35:21.523 EDT: As15 LCP: ACCM 0x000A0000 (0x0206000A0000)
Jul 5 12:35:21.523 EDT: As15 LCP: AuthProto CHAP (0x0305C22305)
Jul 5 12:35:21.523 EDT: As15 LCP: MagicNumber 0x0423BFB1
(0x05060423BFB1)
Jul 5 12:35:21.523 EDT: As15 LCP: PFC (0x0702)
Jul 5 12:35:21.523 EDT: As15 LCP: ACFC (0x0802)
Jul 5 12:35:21.523 EDT: As15 LCP: MRRU 1524 (0x110405F4)
Jul 5 12:35:21.523 EDT: As15 LCP: EndpointDisc 1 Local
(0x130601617330)
Jul 5 12:35:22.899 EDT: As15 LCP: TIMEout: State ACKrcvd
Jul 5 12:35:22.899 EDT: As15 LCP: O CONFREQ [ACKrcvd] id 2 len 35
Jul 5 12:35:22.899 EDT: As15 LCP: ACCM 0x000A0000 (0x0206000A0000)
Jul 5 12:35:22.899 EDT: As15 LCP: AuthProto CHAP (0x0305C22305)
Jul 5 12:35:22.899 EDT: As15 LCP: MagicNumber 0x0423BFB1
(0x05060423BFB1)
Jul 5 12:35:22.899 EDT: As15 LCP: PFC (0x0702)
Jul 5 12:35:22.899 EDT: As15 LCP: ACFC (0x0802)
Jul 5 12:35:22.899 EDT: As15 LCP: MRRU 1524 (0x110405F4)
Jul 5 12:35:22.899 EDT: As15 LCP: EndpointDisc 1 Local
(0x130601617330)
Jul 5 12:35:23.923 EDT: As15 LCP: I CONFREQ [REQsent] id 2 len 47
Jul 5 12:35:23.923 EDT: As15 LCP: ACCM 0x00000000 (0x020600000000)
Jul 5 12:35:23.923 EDT: As15 LCP: MagicNumber 0x1332738B
(0x05061332738B)
Jul 5 12:35:23.923 EDT: As15 LCP: PFC (0x0702)
Jul 5 12:35:23.923 EDT: As15 LCP: ACFC (0x0802)
Jul 5 12:35:23.923 EDT: As15 LCP: MRRU 1614 (0x1104064E)
Jul 5 12:35:23.923 EDT: As15 LCP: EndpointDisc 1 Local
Jul 5 12:35:23.923 EDT: As15 LCP:
(0x13170149D3B764B8EB4228B5834DAE18)
Jul 5 12:35:23.923 EDT: As15 LCP: (0xC06F1400000000)
Jul 5 12:35:23.923 EDT: As15 LCP: O CONFACK [REQsent] id 2 len 47
Jul 5 12:35:23.923 EDT: As15 LCP: ACCM 0x00000000 (0x020600000000)
Jul 5 12:35:23.923 EDT: As15 LCP: MagicNumber 0x1332738B
(0x05061332738B)
Jul 5 12:35:23.923 EDT: As15 LCP: PFC (0x0702)
Jul 5 12:35:23.923 EDT: As15 LCP: ACFC (0x0802)
Jul 5 12:35:23.923 EDT: As15 LCP: MRRU 1614 (0x1104064E)
Jul 5 12:35:23.923 EDT: As15 LCP: EndpointDisc 1 Local
Jul 5 12:35:23.923 EDT: As15 LCP:
(0x13170149D3B764B8EB4228B5834DAE18)
Jul 5 12:35:23.923 EDT: As15 LCP: (0xC06F1400000000)
Jul 5 12:35:23.939 EDT: As15 LCP: I CONFACK [ACKsent] id 2 len 35
Jul 5 12:35:23.939 EDT: As15 LCP: ACCM 0x000A0000 (0x0206000A0000)
Jul 5 12:35:23.939 EDT: As15 LCP: AuthProto CHAP (0x0305C22305)
Jul 5 12:35:23.939 EDT: As15 LCP: MagicNumber 0x0423BFB1
(0x05060423BFB1)
Jul 5 12:35:23.939 EDT: As15 LCP: PFC (0x0702)
Jul 5 12:35:23.939 EDT: As15 LCP: ACFC (0x0802)
Jul 5 12:35:23.939 EDT: As15 LCP: MRRU 1524 (0x110405F4)
Jul 5 12:35:23.939 EDT: As15 LCP: EndpointDisc 1 Local
(0x130601617330)
Jul 5 12:35:23.939 EDT: As15 LCP: State is Open
Jul 5 12:35:23.939 EDT: As15 PPP: Phase is AUTHENTICATING, by this
end [0 sess,
 1 load]
Jul 5 12:35:23.939 EDT: As15 CHAP: O CHALLENGE id 1 len 24 from "as0"
Jul 5 12:35:24.611 EDT: As15 LCP: I IDENTIFY [Open] id 3 len 18 magic
0x1332738
B MSRASV5.00
Jul 5 12:35:24.611 EDT: As15 LCP: I IDENTIFY [Open] id 4 len 19 magic
0x1332738
B MSRAS-1-WS1
Jul 5 12:35:27.331 EDT: As15 CHAP: I RESPONSE id 1 len 34 from
"UserName"
Jul 5 12:35:27.547 EDT: As15 CHAP: O SUCCESS id 1 len 4
Jul 5 12:35:27.547 EDT: As15 PPP: Phase is VIRTUALIZED [0 sess, 1
load]
Jul 5 12:35:27.563 EDT: Vi4 PPP: Phase is DOWN, Setup [0 sess, 1
load]
Jul 5 12:35:27.603 EDT: %LINK-3-UPDOWN: Interface Virtual-Access4,
changed stat
e to up
Jul 5 12:35:27.603 EDT: Vi4 PPP: Treating connection as a dedicated
line
Jul 5 12:35:27.603 EDT: Vi4 PPP: Phase is ESTABLISHING, Active Open
[0 sess, 1
load]
Jul 5 12:35:27.603 EDT: Vi4 LCP: O CONFREQ [Closed] id 1 len 25
Jul 5 12:35:27.603 EDT: Vi4 LCP: AuthProto CHAP (0x0305C22305)
Jul 5 12:35:27.603 EDT: Vi4 LCP: MagicNumber 0x0423D9E3
(0x05060423D9E3)
Jul 5 12:35:27.603 EDT: Vi4 LCP: MRRU 1524 (0x110405F4)
Jul 5 12:35:27.603 EDT: Vi4 LCP: EndpointDisc 1 Local
(0x130601617330)
Jul 5 12:35:27.603 EDT: set_ip_peer_addr: As15: address = 0.0.0.0 (0)
Jul 5 12:35:27.603 EDT: ip_free_pool: As15: address = 204.60.168.150
(2)
Jul 5 12:35:27.607 EDT: Vi4 PPP: Phase is UP [0 sess, 1 load]
Jul 5 12:35:27.607 EDT: Vi4 IPCP: Multilink and TCP/IP header
compression are i
ncompatible
Jul 5 12:35:27.607 EDT: Vi4 IPCP: O CONFREQ [Closed] id 1 len 16
Jul 5 12:35:27.607 EDT: Vi4 IPCP: CompressType VJ 15 slots
(0x0206002D0F00)
Jul 5 12:35:27.607 EDT: Vi4 IPCP: Address 204.60.168.4
(0x0306CC329E04)
Jul 5 12:35:27.607 EDT: As15 MLP: UserName, multilink up, first link
Jul 5 12:35:27.607 EDT: As15 IPCP: Remove route to 204.60.168.150
Jul 5 12:35:28.547 EDT: %LINEPROTO-5-UPDOWN: Line protocol on
Interface Async15
, changed state to up
Jul 5 12:35:28.579 EDT: Vi4 CCP: I CONFREQ [Not negotiated] id 5 len
10
Jul 5 12:35:28.579 EDT: Vi4 CCP: MS-PPC supported bits 0x00000001
(0x1206000
00001)
Jul 5 12:35:28.579 EDT: Vi4 LCP: O PROTREJ [Open] id 2 len 16
protocol CCP (0x8
0FD0105000A120600000001)
Jul 5 12:35:28.595 EDT: Vi4 IPCP: I CONFREQ [REQsent] id 6 len 16
Jul 5 12:35:28.595 EDT: Vi4 IPCP: CompressType VJ 15 slots
CompressSlotID (0
x0206002D0F01)
Jul 5 12:35:28.595 EDT: Vi4 IPCP: Address 0.0.0.0 (0x030600000000)
Jul 5 12:35:28.595 EDT: Vi4 AAA/AUTHOR/IPCP: Start. Her address
0.0.0.0, we wa
nt 0.0.0.0
Jul 5 12:35:28.595 EDT: Vi4 AAA/AUTHOR/IPCP: Done. Her address
0.0.0.0, we wan
t 0.0.0.0
Jul 5 12:35:28.595 EDT: Vi4: Pools to search : default
Jul 5 12:35:28.599 EDT: Vi4: Pool default returned address =
204.60.168.150
Jul 5 12:35:28.599 EDT: Vi4 IPCP: Pool returned 204.60.168.150
Jul 5 12:35:28.599 EDT: Vi4 IPCP: O CONFNAK [REQsent] id 6 len 10
Jul 5 12:35:28.599 EDT: Vi4 IPCP: Address 204.60.168.150
(0x0306CC329E96)
Jul 5 12:35:28.603 EDT: %LINEPROTO-5-UPDOWN: Line protocol on
Interface Virtual
-Access4, changed state to up
Jul 5 12:35:28.611 EDT: Vi4 IPCP: I CONFACK [REQsent] id 1 len 16
Jul 5 12:35:28.611 EDT: Vi4 IPCP: CompressType VJ 15 slots
(0x0206002D0F00)
Jul 5 12:35:28.611 EDT: Vi4 IPCP: Address 204.60.168.4
(0x0306CC329E04)
Jul 5 12:35:29.347 EDT: Vi4 IPCP: I CONFREQ [ACKrcvd] id 7 len 16
Jul 5 12:35:29.347 EDT: Vi4 IPCP: CompressType VJ 15 slots
CompressSlotID (0
x0206002D0F01)
Jul 5 12:35:29.347 EDT: Vi4 IPCP: Address 204.60.168.150
(0x0306CC329E96)
Jul 5 12:35:29.347 EDT: Vi4 AAA/AUTHOR/IPCP: Start. Her address
204.60.168.150
, we want 204.60.168.150
Jul 5 12:35:29.351 EDT: Vi4 AAA/AUTHOR/IPCP: Reject 204.60.168.150,
using 204.5
0.158.150
Jul 5 12:35:29.351 EDT: Vi4 AAA/AUTHOR/IPCP: Done. Her address
204.60.168.150,
 we want 204.60.168.150
Jul 5 12:35:29.351 EDT: Vi4 IPCP: O CONFACK [ACKrcvd] id 7 len 16
Jul 5 12:35:29.351 EDT: Vi4 IPCP: CompressType VJ 15 slots
CompressSlotID (0
x0206002D0F01)
Jul 5 12:35:29.351 EDT: Vi4 IPCP: Address 204.60.168.150
(0x0306CC329E96)
Jul 5 12:35:29.351 EDT: Vi4 IPCP: State is Open
Jul 5 12:35:29.351 EDT: Vi4 IPCP: Install route to 204.60.168.150
Jul 5 12:35:57.323 EDT: TTY50: EXEC creation
Jul 5 12:35:57.323 EDT: TTY50: set timer type 10, 30 seconds
Jul 5 12:35:57.327 EDT: TTY50: set timer type 10, 30 seconds
Jul 5 12:35:57.331 EDT: TTY50: create timer type 1, 600 seconds
Jul 5 12:35:57.335 EDT: TTY50: set timer type 10, 30 seconds
Jul 5 12:35:57.383 EDT: TTY50: Line reset by "Virtual Exec"
Jul 5 12:35:57.383 EDT: TTY50: Modem: (unknown)->READY
Jul 5 12:35:57.383 EDT: TTY50: no timer type 0 to destroy
Jul 5 12:35:57.383 EDT: TTY50: destroy timer type 1
Jul 5 12:35:57.383 EDT: TTY50: no timer type 3 to destroy
Jul 5 12:35:57.383 EDT: TTY50: no timer type 4 to destroy
Jul 5 12:35:57.387 EDT: TTY50: no timer type 2 to destroy

This archive was generated by hypermail 2b29 : Sun Aug 04 2002 - 04:12:43 EDT