<table cellspacing="0" cellpadding="0" border="0" ><tr><td valign="top" style="font: inherit;">Hi <span style="font-family: monospace;"></span>Gerald<br>Normaly we are use this device for L2tp tunnel authentication.<br><br>--- On <b>Tue, 10/21/08, cisco-bba-request@puck.nether.net <i><cisco-bba-request@puck.nether.net></i></b> wrote:<br><blockquote style="border-left: 2px solid rgb(16, 16, 255); margin-left: 5px; padding-left: 5px;">From: cisco-bba-request@puck.nether.net <cisco-bba-request@puck.nether.net><br>Subject: cisco-bba Digest, Vol 64, Issue 6<br>To: cisco-bba@puck.nether.net<br>Date: Tuesday, October 21, 2008, 7:00 PM<br><br><pre>Send cisco-bba mailing list submissions to<br>        cisco-bba@puck.nether.net<br><br>To subscribe or unsubscribe via the World Wide Web, visit<br>        https://puck.nether.net/mailman/listinfo/cisco-bba<br>or, via email, send a message with subject or body 'help' to<br>
        cisco-bba-request@puck.nether.net<br><br>You can reach the person managing the list at<br>        cisco-bba-owner@puck.nether.net<br><br>When replying, please edit your Subject line so it is more specific<br>than "Re: Contents of cisco-bba digest..."<br><br><br>Today's Topics:<br><br> 1. pppoe agregation ip problem. (tolga egemen)<br> 2. Re: pppoe agregation ip problem. (Gerald Krause)<br><br><br>----------------------------------------------------------------------<br><br>Message: 1<br>Date: Tue, 21 Oct 2008 05:24:04 -0700 (PDT)<br>From: tolga egemen <tegemen@yahoo.com><br>Subject: [cisco-bba] pppoe agregation ip problem.<br>To: cisco-bba@puck.nether.net<br>Message-ID: <407317.88017.qm@web57504.mail.re1.yahoo.com><br>Content-Type: text/plain; charset="iso-8859-3"<br><br>Bonjour cisco-bba, <br><br>We actualty want to use Alcatel Dslam and Cisco 10000 for Dsl aggregation.<br>Does any one work with two of them?<br><br>When ppp session come to
C?SCO 10000 ,its send acces request to radius,if user<br>is ok radius sending Access request Accept bras to give ip addres from DINAMIC<br>pool if user not authanticated radius give UNPOOL ip (10.1.1.0) for going to<br>riderect page.<br><br>we are having problem and user not geting public ip adress.Bras sending two<br>access request to radius but not full username,firstly sending just?<br>''@test.net'',<br>secondly send ''test1@test.net'' format.Becouse of first format<br>device not geting ip address from DINAMIC pool.<br>Iam sending config and radius debug.(user:test1@test.net)<br>Thanks all.<br><br><br>aaa group server radius RA<br>?server 84.40.50.9 auth-port 1812 acct-port 1813<br>?load-balance method least-outstanding<br>!<br>aaa group server radius RA_AC<br>?server 84.40.50.10 auth-port 1812 acct-port 1813<br>?load-balance method least-outstanding<br>!<br>aaa authentication login default local<br>aaa authentication ppp AUT group RA<br>aaa
authorization network default group radius none <br>aaa accounting delay-start all<br>aaa accounting update periodic 60<br>aaa accounting network ACC start-stop group RA_AC<br><br>redirect server-group PORTAL<br>?server ip 84.40.50.2<br><br>bba-group pppoe alcatel<br>?virtual-template 10<br>?sessions per-mac limit 2<br>?sessions per-vlan limit 250<br>?sessions auto cleanup <br><br>interface loopback 0<br>ip address 84.40.50.1 255.255.255.0<br><br>interface GigabitEthernet3/1/0<br>?description ADSL-PPPOE interface<br>?no ip address<br>?no ip redirects<br>?no ip unreachables<br>?no ip proxy-arp<br>?load-interval 30<br>?no negotiation auto<br>!<br>interface GigabitEthernet3/1/0.50<br>?description ADSL-PPPOE interface<br>?encapsulation dot1Q 50<br>?no ip redirects<br>?no ip unreachables<br>?no ip proxy-arp<br>?pppoe enable group alcatel<br>?no snmp trap link-status<br>!<br>interface GigabitEthernet3/1/0.4093<br>?description Alcatel Dslam
Management<br>?encapsulation dot1Q 4093<br>?ip address 10.10.10.93 255.255.255.252<br>?no ip unreachables<br>?pppoe enable group alcatel<br>?no snmp trap link-status<br><br>interface Virtual-Template10<br>?ip unnumbered Loopback0<br>?ip mtu 1492<br>?no ip route-cache cef<br>?no logging event link-status<br>?peer pool backup<br>?peer default ip address pool DINAMIC<br>?ppp mtu adaptive<br>?ppp authentication chap pap AUT<br>?ppp accounting ACC<br>?ppp ipcp dns 84.40.50.5<br><br>ip local pool UNPOOL 10.1.1.1 10.1.1.254<br>ip local pool DINAMIK 124.20.10.1 124.20.10.254<br><br><br>radius-server host 84.40.50.9 auth-port 1812 acct-port 1813 key XXXXXXXXXXXX<br>radius-server host 84.40.50.10 auth-port 1812 acct-port 1813 key XXXXXXXXXXXX<br><br>=======================<br><br>bras#<br>bras#<br>bras#<br>Oct 21 11:59:29.037: Vi5 Debug: Condition 1, username test1@test.net cleared,<br>count 0<br>Oct 21 11:59:29.037: RADIUS/ENCODE(00054B14):Orig. component type =
PPoE<br>Oct 21 11:59:29.037: RADIUS(00054B14): sending<br>Oct 21 11:59:29.281: ppp1285 Debug: Condition 1, username test1@test.net<br>cleared, count -1<br>Oct 21 11:59:31.365: ppp1425 Debug: Condition 1, username test1@test.net<br>triggered, count 1<br>Oct 21 11:59:31.369: RADIUS/ENCODE(00054B16):Orig. component type = PPoE<br>Oct 21 11:59:31.369: RADIUS/ENCODE(00054B16): acct_session_id: 562855<br>Oct 21 11:59:31.369: RADIUS(00054B16): sending<br>Oct 21 11:59:31.369: RADIUS(00054B16): Send Access-Request to 84.40.50.9:1812<br>id 1645/103, len 142<br>Oct 21 11:59:31.369: RADIUS:? authenticator 6A 4E F8 55 D2 04 C3 D6 - 07 D5 D2<br>E4 3D D7 30 A8<br>Oct 21 11:59:31.369: RADIUS:? User-Name?????????? [1]?? 15?<br>"test.net"<br>Oct 21 11:59:31.369: RADIUS:? User-Password?????? [2]?? 18? *<br>Oct 21 11:59:31.369: RADIUS:? NAS-Port-Type?????? [61]? 6??<br>Virtual?????????????????? [5]<br>Oct 21 11:59:31.369: RADIUS:? NAS-Port??????????? [5]??
6??<br>0??????????????????????? ?<br>Oct 21 11:59:31.369: RADIUS:? NAS-Port-Id???????? [87]? 10?<br>"3/1/0/50"<br>Oct 21 11:59:31.369: RADIUS:? Service-Type??????? [6]?? 6??<br>Outbound????????????????? [5]<br>Oct 21 11:59:31.369: RADIUS:? NAS-IP-Address????? [4]?? 6??<br>84.40.50.1????????????? ?<br>Oct 21 11:59:31.369: RADIUS:? Acct-Session-Id???? [44]? 18?<br>"0A640312000896A7"<br>Oct 21 11:59:31.369: RADIUS:? Nas-Identifier????? [32]? 31?<br>"bras.test.net"<br>Oct 21 11:59:31.369: RADIUS:? Event-Timestamp???? [55]? 6??<br>1224590371?????????????? ?<br>Oct 21 11:59:31.393: RADIUS: Received from id 1645/103 84.40.50.9:1812,<br>Access-Accept, len 104<br>Oct 21 11:59:31.393: RADIUS:? authenticator 58 5F 57 86 8B 0B DD 85 - 2B B6 38<br>C4 BA 62 5B 6F<br>Oct 21 11:59:31.393: RADIUS:? Vendor, Cisco?????? [26]? 27 ?<br>Oct 21 11:59:31.393: RADIUS:?? Cisco AVpair?????? [1]?? 21?<br>"ip:addr-pool=UNPOOL"<br>Oct 21 11:59:31.393: RADIUS:? Vendor, Cisco??????
[26]? 57 ?<br>Oct 21 11:59:31.393: RADIUS:?? Cisco AVpair?????? [1]?? 51?<br>"ip:l4redirect=redirect list 199 to group PORTAL"<br>Oct 21 11:59:31.393: RADIUS(00054B16): Received from id 1645/103<br>Oct 21 11:59:31.393: RADIUS/ENCODE(00054B16):Orig. component type = PPoE<br>Oct 21 11:59:31.393: RADIUS/ENCODE: No idb found! Framed IP Addr might not be<br>included<br>Oct 21 11:59:31.393: RADIUS/ENCODE(00054B16): acct_session_id: 562855<br>Oct 21 11:59:31.393: RADIUS(00054B16): sending<br>Oct 21 11:59:31.393: RADIUS(00054B16): Send Access-Request to 84.40.50.9:1645<br>id 1645/104, len 201<br>Oct 21 11:59:31.393: RADIUS:? authenticator 62 21 85 13 E0 EC 60 98 - 9E 93 DE<br>5D 53 31 4B A5<br>Oct 21 11:59:31.393: RADIUS:? Vendor, Cisco?????? [26]? 41 ?<br>Oct 21 11:59:31.393: RADIUS:?? Cisco AVpair?????? [1]?? 35?<br>"client-mac-address=0019.cb36.9f4e"<br>Oct 21 11:59:31.393: RADIUS:? Framed-Protocol???? [7]?? 6??<br>PPP?????????????????????? [1]<br>Oct 21
11:59:31.397: RADIUS:? User-Name?????????? [1]?? 26?<br>"test1@test.net"<br>Oct 21 11:59:31.397: RADIUS:? CHAP-Password?????? [3]?? 19? *<br>Oct 21 11:59:31.397: RADIUS:? NAS-Port-Type?????? [61]? 6??<br>Virtual?????????????????? [5]<br>Oct 21 11:59:31.397: RADIUS:? NAS-Port??????????? [5]?? 6??<br>0??????????????????????? ?<br>Oct 21 11:59:31.397: RADIUS:? NAS-Port-Id???????? [87]? 10?<br>"3/1/0/50"<br>Oct 21 11:59:31.397: RADIUS:? Service-Type??????? [6]?? 6??<br>Framed??????????????????? [2]<br>Oct 21 11:59:31.397: RADIUS:? NAS-IP-Address????? [4]?? 6??<br>84.40.50.1????????????? ?<br>Oct 21 11:59:31.397: RADIUS:? Acct-Session-Id???? [44]? 18?<br>"0A640312000896A7"<br>Oct 21 11:59:31.397: RADIUS:? Nas-Identifier????? [32]? 31?<br>"bras.test.net"<br>Oct 21 11:59:31.397: RADIUS:? Event-Timestamp???? [55]? 6??<br>1224590371?????????????? ?<br>Oct 21 11:59:31.425: RADIUS: Received from id 1645/104 84.40.50.9:1645,<br>Access-Accept, len 104<br>Oct 21
11:59:31.425: RADIUS:? authenticator 01 6D A1 23 A1 FB 4A 35 - BF F6 D3<br>8F 38 63 3A 6B<br>Oct 21 11:59:31.425: RADIUS:? Vendor, Cisco?????? [26]? 27 ?<br>Oct 21 11:59:31.425: RADIUS:?? Cisco AVpair?????? [1]?? 21?<br>"ip:addr-pool=UNPOOL"<br>Oct 21 11:59:31.425: RADIUS:? Vendor, Cisco?????? [26]? 57 ?<br>Oct 21 11:59:31.425: RADIUS:?? Cisco AVpair?????? [1]?? 51?<br>"ip:l4redirect=redirect list 199 to group PORTAL"<br>Oct 21 11:59:31.425: RADIUS(00054B16): Received from id 1645/104<br>Oct 21 11:59:31.453: Vi4 Debug: Condition 1, username test1@test.net triggered,<br>count 1<br>bras#<br>bras#<br><br><br><br><br> <br>-------------- next part --------------<br>An HTML attachment was scrubbed...<br>URL:<br><https://puck.nether.net/pipermail/cisco-bba/attachments/20081021/803dbdfd/attachment-0001.html><br><br>------------------------------<br><br>Message: 2<br>Date: Tue, 21 Oct 2008 16:58:54 +0200<br>From: Gerald Krause
<gk@ax.tc><br>Subject: Re: [cisco-bba] pppoe agregation ip problem.<br>To: cisco-bba@puck.nether.net<br>Message-ID: <48FDEE2E.7020802@ax.tc><br>Content-Type: text/plain; charset=ISO-8859-3<br><br>On 21.10.2008 14:24, tolga egemen wrote:<br>> we are having problem and user not geting public ip adress.Bras sending<br>> two access request to radius but not full username,firstly sending just <br>> ''@test.net'',<br>> secondly send ''test1@test.net'' format.<br><br>Maybe your BRAS is doing a "L2TP Tunnel Authentication/VPDN Tunnel<br>Lookup Based on Domain Name" like described in the 'Cisco IOS VPDN<br>Configuration Guide - Configuring AAA for VPDNs' documentation.<br><br>--<br>Gerald (ax/tc)<br><br><br>------------------------------<br><br>_______________________________________________<br>cisco-bba mailing list<br>cisco-bba@puck.nether.net<br>https://puck.nether.net/mailman/listinfo/cisco-bba<br><br>End of cisco-bba Digest, Vol
64, Issue 6<br>****************************************<br></pre></blockquote></td></tr></table><br>