[c-nsp] Cisco AS5300 config as a MODEM pool

James Bensley jwbensley at gmail.com
Fri Aug 5 05:41:47 EDT 2016 

We had some AS5300s as ISDN LACs that in turn forward the queries to
our ADSL LNS's...

So this is the config from one of our ISDN AS5300 LACs, should be able
to modify this as you need to termiante locally rather than forward
the L2TP tunnel.

Cheers,
James.



version 12.3
service tcp-keepalives-in
service tcp-keepalives-out
service timestamps debug datetime msec localtime show-timezone year
service timestamps log datetime msec localtime show-timezone year
service password-encryption
!
hostname xxxxx
!
boot-start-marker
no boot startup-test
boot-end-marker
!
logging buffered 100000 debugging
!
resource-pool disable
clock timezone GMT 0
clock summer-time BST recurring last Sun Mar 1:00 last Sun Oct 2:00
spe default-firmware spe-firmware-1
aaa new-model
!
!
aaa group server tacacs+ ACS
 server xxxxx
 server xxxxx
!
aaa group server radius ACS-RAD
 server xxxxx auth-port 1812 acct-port 1813
 server xxxxx auth-port 1812 acct-port 1813
 ip vrf forwarding xxxxx
 ip radius source-interface xxxxx
!
aaa authentication login default group ACS-RAD local
aaa authorization exec default group ACS-RAD local
aaa accounting exec default start-stop group ACS-RAD
aaa session-id common
ip subnet-zero
no ip source-route
!
!
ip cef
ip tcp selective-ack
ip telnet source-interface xxxxx
ip tftp source-interface xxxxx
no ip domain lookup
ip domain name xxxxx.net
!
ip vrf xxxxx
 rd xxxxx:xxxxx
!
vpdn enable
!
vpdn-group 1
 request-dialin
  protocol l2tp
  domain xxxxx.net
 initiate-to ip ip.of.lns.7200
 source-ip FastEthernet0/0.100.ip.goes.here
 local name lac01-lhc
 l2tp tunnel password 7 xxxxx
 ip pmtu
!
isdn switch-type primary-net5
!
!
!
!
!
!
!
!
!
!
!
!
!
!
controller E1 1/0
 pri-group timeslots 1-31
!
controller E1 1/1
 pri-group timeslots 1-31
!
controller E1 1/2
 pri-group timeslots 1-31
!
controller E1 1/3
 pri-group timeslots 1-31
!
!
interface FastEthernet0/0
 description xxxxx
 no ip address
 duplex full
 speed 100
!
interface FastEthernet0/0.100
 description xxxxx
 encapsulation dot1Q 100
 ip address xxxxx 255.255.255.252
!
interface FastEthernet0/0.2047
 encapsulation dot1Q 2047
 ip vrf forwarding xxxxx
 ip address xxxxx 255.255.255.0
!
interface FastEthernet0/1
 no ip address
 shutdown
 duplex auto
 speed auto
!
interface Serial0/0
 no ip address
 clockrate 2000000
 no cdp enable
!
interface Serial0/1
 no ip address
 clockrate 2000000
 no cdp enable
!
interface Serial1/0:15
 no ip address
 encapsulation ppp
 dialer-group 1
 isdn switch-type primary-net5
 isdn incoming-voice modem
 no peer default ip address
 no cdp enable
 ppp authentication chap pap
 ppp multilink
!
interface Serial1/1:15
 no ip address
 encapsulation ppp
 dialer-group 1
 isdn switch-type primary-net5
 isdn incoming-voice modem
 no peer default ip address
 no cdp enable
 ppp authentication chap pap
 ppp multilink
!
interface Serial1/2:15
 ip unnumbered FastEthernet0/0
 encapsulation ppp
 dialer-group 1
 isdn switch-type primary-net5
 isdn incoming-voice modem
 peer default ip address pool setup_pool
 no cdp enable
 ppp authentication chap pap
 ppp multilink
!
interface Serial1/3:15
 ip unnumbered FastEthernet0/0
 encapsulation ppp
 dialer-group 1
 isdn switch-type primary-net5
 isdn incoming-voice modem
 peer default ip address pool setup_pool
 no cdp enable
 ppp authentication chap pap
 ppp multilink
!
interface Async1
 no ip address
!
interface Group-Async0
 ip unnumbered FastEthernet0/0.100
 encapsulation ppp
 async mode dedicated
 group-range 2/00 3/59
!
ip classless
ip route 0.0.0.0 0.0.0.0 xxxxx
ip route vrf xxxxx 0.0.0.0 0.0.0.0 xxxxx
ip tacacs source-interface xxxxx
no ip http server
!
!
ip radius source-interface xxxxx vrf xxxxx
logging source-interface xxxxx
logging xxxxx
logging xxxxx
access-list 101 permit ip any any
dialer-list 1 protocol ip permit
!
tacacs-server host xxxxx
tacacs-server host xxxxx
tacacs-server directed-request
tacacs-server key 7 xxxxx
snmp-server xxxxxxxxxxxxxxx
!
radius-server host xxxxx auth-port 1812 acct-port 1813 key 7 xxxxx
radius-server host xxxxx auth-port 1812 acct-port 1813 key 7 xxxxx
!
voice-port 1/0:D
!
voice-port 1/1:D
!
voice-port 1/2:D
!
voice-port 1/3:D
!
!
!
!
banner exec ^CCC
xxxxx
^C
banner login ^CCC
xxxxx
^C
!

line vty 0 4
 password 7 xxxxxxxx
line 2/00 3/59
 modem InOut
 autoselect during-login
 autoselect ppp
!
scheduler allocate 10000 400
ntp clock-period 17179794
ntp source xxxxx
ntp update-calendar
ntp server vrf xxxxx prefer
ntp server vrf xxxxx
end

More information about the cisco-nsp mailing list