[c-nsp] VPDN VPN

Rodney Dunn rodunn at cisco.com
Thu Oct 28 09:42:20 EDT 2004


On Wed, Oct 27, 2004 at 10:03:06AM +1000, Nick Shah wrote:
> Mark, 
> 
> Use something like this in your radius:
> 
> fred       Password="cisco123"
>         Framed-IP-Address = "172.16.100.21",
>         Service-Type = Framed,
>         Framed-Protocol = PPP,
>         cisco-avpair = "lcp:interface-config#1=ip address 172.16.100.22
> 255.255.255.252",
> 
> That way a /30 virtual link is created between the DSL CPE  & the LNS
> (or LAC). All users should have a distinct /30 assigned via this method.

Maybe use a /31 if possible to save 2 more ip addresses?

> 
> 
> An alternate way is like this :
> 
> fred       Password="cisco123"
>         Framed-IP-Address = "172.16.100.21",
>         Service-Type = Framed,
>         Framed-Protocol = PPP,
>         cisco-avpair = "lcp:interface-config#1=ip unnumbered loopback99"
> 
> Then on the router, create a loopback 99 and assign it an ip address out
> of the 172.16.100.x (with a /32 mask). So, all users should have a
> distinct ip address, but same loopback to point to. That way, you will
> have a P2MP topology. 
> 
> rgds
> 
> -----Original Message-----
> From: cisco-nsp-bounces at puck.nether.net
> [mailto:cisco-nsp-bounces at puck.nether.net] On Behalf Of Mark
> Sent: Wednesday, 27 October 2004 1:26 AM
> To: cisco-nsp
> Subject: [c-nsp] VPDN VPN
> 
> 
> I need to create a SIMPLE DSL VPN with PPPoA.
> 
> My BNAS has a public interface (200.X.X.1) and a intranet interface 
> (192.168.X.X).
> I'm assign private IP to PPPoA Session using radius.
> Actually PPP(oA) session assign 200.X.X.1 as gateway and routing do not 
> work.
> 
> Can you help me? Maybe I need to setup some VRF?
> 
> Mark
> 
> _______________________________________________
> cisco-nsp mailing list  cisco-nsp at puck.nether.net
> https://puck.nether.net/mailman/listinfo/cisco-nsp
> archive at http://puck.nether.net/pipermail/cisco-nsp/
> 
> 
> ------------------------------------------------------------------------------
> This communication, including any attachments, is confidential. If 
>  you are not the intended recipient, you should not read it - please 
>  contact me immediately, destroy it, and do not copy or use any part of 
>  this communication or disclose anything about it.
> 
> ------------------------------------------------------------------------------
> 
> 
> _______________________________________________
> cisco-nsp mailing list  cisco-nsp at puck.nether.net
> https://puck.nether.net/mailman/listinfo/cisco-nsp
> archive at http://puck.nether.net/pipermail/cisco-nsp/


More information about the cisco-nsp mailing list