[cisco-bba] PPPoE & L2TP

Sebastian Dehne sebastian at infopact.nl
Thu Nov 6 03:38:05 EST 2003 

OK, here is the debug from the NAS again.

General OS:
  AAA Authentication debugging is on
  AAA Authorization debugging is on
PPP:
  PPP protocol negotiation debugging is on

VTEMPLATE:
  Virtual Template events debugging is on
Radius protocol debugging is on
Radius packet protocol (authentication) debugging is on


VPN:
  L2X protocol events debugging is on
  L2X protocol errors debugging is on

.Nov  6 09:36:45.834 CET: L2X: Unknown AVP found during length verification. AVP is 110, vendor code is 9, len is 6
.Nov  6 09:36:45.834 CET: L2X: Ignoring unknown Cisco AVP 110
.Nov  6 09:36:45.834 CET: L2TP: I SCCRQ from x134 tnl 57774
.Nov  6 09:36:45.834 CET:  Tnl 51200 L2TP: Got a challenge in SCCRQ, x134
.Nov  6 09:36:45.834 CET:  Tnl 51200 L2TP: New tunnel created for remote x134, address 212.29.160.134
.Nov  6 09:36:45.834 CET:  Tnl 51200 L2TP: O SCCRP  to x134 tnlid 57774
.Nov  6 09:36:45.834 CET:  Tnl 51200 L2TP: Control channel retransmit delay set to 1 seconds
.Nov  6 09:36:45.834 CET:  Tnl 51200 L2TP: Tunnel state change from idle to wait-ctl-reply
.Nov  6 09:36:45.858 CET:  Tnl 51200 L2TP: I SCCCN from x134 tnl 57774
.Nov  6 09:36:45.858 CET:  Tnl 51200 L2TP: Got a Challenge Response in SCCCN from x134
.Nov  6 09:36:45.858 CET:  Tnl 51200 L2TP: Tunnel Authentication success
.Nov  6 09:36:45.858 CET:  Tnl 51200 L2TP: Tunnel state change from wait-ctl-reply to established
.Nov  6 09:36:45.858 CET:  Tnl 51200 L2TP: SM State established
.Nov  6 09:36:45.862 CET:  Tnl 51200 L2TP: I ICRQ from x134 tnl 57774
.Nov  6 09:36:45.862 CET:  Tnl/Sn 51200/8 L2TP: Session FS enabled
.Nov  6 09:36:45.862 CET:  Tnl/Sn 51200/8 L2TP: Session state change from idle to wait-connect
.Nov  6 09:36:45.862 CET:  Tnl/Sn 51200/8 L2TP: New session created
.Nov  6 09:36:45.862 CET:  Tnl/Sn 51200/8 L2TP: O ICRP to x134 57774/3
.Nov  6 09:36:45.862 CET:  Tnl 51200 L2TP: Control channel retransmit delay set to 1 seconds
.Nov  6 09:36:45.886 CET:  Tnl/Sn 51200/8 L2TP: I ICCN from x134 tnl 57774, cl 3
.Nov  6 09:36:45.886 CET: pppoe at test.com Tnl/Sn 51200/8 L2TP: Session state change from wait-connect to wait-for-service-selection
.Nov  6 09:36:45.886 CET: AAA/BIND(0000000C): Bind i/f Virtual-Template10
.Nov  6 09:36:45.890 CET: ppp7 PPP: Phase is ESTABLISHING
.Nov  6 09:36:45.890 CET: ppp7 LCP: I FORCED rcvd CONFACK len 14
.Nov  6 09:36:45.890 CET: ppp7 LCP:    MRU 1492 (0x010405D4)
.Nov  6 09:36:45.890 CET: ppp7 LCP:    AuthProto PAP (0x0304C023)
.Nov  6 09:36:45.890 CET: ppp7 LCP:    MagicNumber 0x04BDF28B (0x050604BDF28B)
.Nov  6 09:36:45.890 CET: ppp7 LCP: I FORCED sent CONFACK len 10
.Nov  6 09:36:45.890 CET: ppp7 LCP:    MRU 1492 (0x010405D4)
.Nov  6 09:36:45.890 CET: ppp7 LCP:    MagicNumber 0x21D97898 (0x050621D97898)
.Nov  6 09:36:45.890 CET: ppp7 PPP LCP not accepting sent CONFACK
.Nov  6 09:36:45.890 CET: ppp7 LCP: State is Closed
.Nov  6 09:36:45.890 CET: ppp7 PPP: Sending Acct Event[Down] id[C]
.Nov  6 09:36:45.894 CET: ppp7 PPP: Phase is DOWN
.Nov  6 09:36:45.894 CET: pppoe at test.com Tnl/Sn 51200/8 L2TP: disconnect (AAA) IETF: 2/lost-carrier Ascend: 7/Lost Carrier
.Nov  6 09:36:45.894 CET: pppoe at test.com Tnl/Sn 51200/8 L2TP: O CDN to x134 57774/3
.Nov  6 09:36:45.894 CET:  Tnl 51200 L2TP: Control channel retransmit delay set to 1 seconds
.Nov  6 09:36:45.894 CET: pppoe at test.com Tnl/Sn 51200/8 L2TP: Destroying session
.Nov  6 09:36:45.894 CET: pppoe at test.com Tnl/Sn 51200/8 L2TP: Session state change from wait-for-service-selection to idle
.Nov  6 09:36:45.894 CET:  Tnl 51200 L2TP: Tunnel state change from established to no-sessions-left
.Nov  6 09:36:45.894 CET:  Tnl 51200 L2TP: No more sessions in tunnel, shutdown (likely) in 10 seconds
.Nov  6 09:36:55.894 CET:  Tnl 51200 L2TP: O StopCCN  to x134 tnlid 57774
.Nov  6 09:36:55.894 CET:  Tnl 51200 L2TP: Control channel retransmit delay set to 1 seconds
.Nov  6 09:36:55.894 CET:  Tnl 51200 L2TP: Tunnel state change from no-sessions-left to shutting-down
.Nov  6 09:36:55.922 CET:  Tnl 51200 L2TP: Shutdown tunnel
.Nov  6 09:36:55.922 CET:  Tnl 51200 L2TP: Tunnel state change from shutting-down to idle

Thanks for looking at it!

greetings,
Sebastian

Dennis Peng (dpeng at cisco.com) wrote:
> Could you turn on "debug vtemplate event" and "Debug ppp negot"?
> 
> Dennis
> 
> Sebastian Dehne [sebastian at infopact.nl] wrote:
> > Hi list,
> > 
> > I'm trying to forward a ppp (pppoe) sessions wihout succes. I have tried
> > all kinds of example-configuration, but without success.
> > 
> > PPPoE-client --pppoe--> LNS --l2tp--> NAS
> > 
> > I see the l2tp-tunnel being created, but no ppp-session in it.
> > 
> > Outout fom the NAS:
> > 
> > v5#show debugging
> > General OS:
> >   AAA Authentication debugging is on
> >   AAA Authorization debugging is on
> > 
> > Radius protocol debugging is on
> > Radius packet protocol (authentication) debugging is on
> > 
> > 
> > VPN:
> >   L2X protocol events debugging is on
> >   L2X protocol errors debugging is on
> > 
> > Nov  4 13:46:27.448 CET:  Tnl 6986 L2TP: I ICRQ from x134 tnl 36621
> > Nov  4 13:46:27.448 CET:  Tnl 6986 L2TP: Tunnel state change from no-sessions-left to established
> > Nov  4 13:46:27.448 CET:  Tnl/Sn 6986/6 L2TP: Session FS enabled
> > Nov  4 13:46:27.452 CET:  Tnl/Sn 6986/6 L2TP: Session state change from idle to wait-connect
> > Nov  4 13:46:27.452 CET:  Tnl/Sn 6986/6 L2TP: New session created
> > Nov  4 13:46:27.452 CET:  Tnl/Sn 6986/6 L2TP: O ICRP to x134 36621/8
> > Nov  4 13:46:27.452 CET:  Tnl 6986 L2TP: Control channel retransmit delay set to 1 seconds
> > Nov  4 13:46:27.476 CET:  Tnl/Sn 6986/6 L2TP: I ICCN from x134 tnl 36621, cl 8
> > Nov  4 13:46:27.476 CET: pppoe at test.com Tnl/Sn 6986/6 L2TP: Session state change from wait-connect to wait-for-service-selection
> > Nov  4 13:46:27.476 CET: AAA/BIND(00000007): Bind i/f Virtual-Template10 
> > Nov  4 13:46:27.480 CET: pppoe at test.com Tnl/Sn 6986/6 L2TP: disconnect (AAA) IETF: 2/lost-carrier Ascend: 7/Lost Carrier
> > Nov  4 13:46:27.480 CET: pppoe at test.com Tnl/Sn 6986/6 L2TP: O CDN to x134 36621/8
> > Nov  4 13:46:27.480 CET:  Tnl 6986 L2TP: Control channel retransmit delay set to 1 seconds
> > Nov  4 13:46:27.480 CET: pppoe at test.com Tnl/Sn 6986/6 L2TP: Destroying session
> > Nov  4 13:46:27.480 CET: pppoe at test.com Tnl/Sn 6986/6 L2TP: Session state change from wait-for-service-selection to idle
> > Nov  4 13:46:27.480 CET:  Tnl 6986 L2TP: Tunnel state change from established to no-sessions-left
> > Nov  4 13:46:27.484 CET:  Tnl 6986 L2TP: No more sessions in tunnel, shutdown (likely) in 10 seconds
> > 
> > Seen the fact that radius-debugging is switched; My conclusion is that
> > the proess doesnt reach AAA.
> > 
> > The NAS uses 12.2(15)T8 and the LNS 12.3(4)T.
> > 
> > can anyone help?
> > 
> > greetings,
> > Sebastian
> > 
> > _______________________________________________
> > cisco-bba mailing list
> > cisco-bba at puck.nether.net
> > https://puck.nether.net/mailman/listinfo/cisco-bba
>

More information about the cisco-bba mailing list