cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
2548
Views
15
Helpful
8
Replies

L2TP PPP lab scenario issue based on CSR1000V

Omar El-Mohri
Level 1
Level 1

Hellow everyone,

I'm building a topology to simulate the following:

(Customer)===[PPPoE]====(LAC)====[L2TP]====(LNS-RADIUS)

Here is my current configuration based on IOS-XE CSR 1000V:

Client#sh run
!
hostname Client
!
subscriber templating
!
multilink bundle-name authenticated
!
license udi pid CSR1000V sn 93PPFPXCV57
license boot level ax
spanning-tree extend system-id
!
interface GigabitEthernet1
ip address 192.168.0.100 255.255.255.0
negotiation auto
pppoe enable group global
pppoe-client dial-pool-number 1
ip virtual-reassembly
!
interface Dialer1
ip address negotiated
encapsulation ppp
dialer pool 1
dialer-group 1
ppp authentication pap
ppp pap sent-username dsl@zam.com password 0 dsl
!
virtual-service csr_mgmt
!
ip forward-protocol nd
!
no ip http server
ip http secure-server
ip route 0.0.0.0 0.0.0.0 Dialer1
!
control-plane
!

LAC configuration:

LAC#sh run
!
aaa new-model
!
subscriber templating
!
multilink bundle-name authenticated
vpdn enable
vpdn search-order domain
!
vpdn-group zam
request-dialin
protocol l2tp
domain zam.com
initiate-to ip 10.0.0.1
local name LAC
l2tp tunnel password 0 pass
!
bba-group pppoe global
virtual-template 1
!
interface GigabitEthernet1
ip address 10.0.0.2 255.255.255.0
negotiation auto
!
interface GigabitEthernet2
ip address 192.168.0.1 255.255.255.0
negotiation auto
pppoe enable group global
!
interface Virtual-Template1
ip unnumbered GigabitEthernet2
ppp authentication pap
!
virtual-service csr_mgmt
!
ip forward-protocol nd
!
end

And the LNS configuration:

LNS#sh run
!
hostname LNS
!
aaa new-model
!
aaa authentication login default group radius local
aaa authentication ppp default local
aaa authorization network default local
aaa accounting network default start-stop group radius
!
subscriber templating
!
multilink bundle-name authenticated
vpdn enable
vpdn multihop
!
vpdn-group zam
accept-dialin
protocol l2tp
virtual-template 1
terminate-from hostname LAC
source-ip 10.0.0.1
lcp renegotiation always
l2tp tunnel password 0 pass
!
username omar privilege 15 password 0 omar
username dsl password 0 dsl
!
redundancy
mode none
!
bba-group pppoe global
!
interface Loopback0
ip address 4.4.4.4 255.255.255.255
!
interface GigabitEthernet1
ip address 10.0.0.1 255.255.255.0
negotiation auto
!
interface GigabitEthernet2
ip address 10.3.3.2 255.255.255.0
negotiation auto
!
interface GigabitEthernet3
no ip address
shutdown
negotiation auto
!
interface Virtual-Template1
ip unnumbered GigabitEthernet1
ip mtu 1480
peer default ip address pool pool1
ppp authentication pap
!
!
virtual-service csr_mgmt
!
ip local pool pool1 172.16.0.100 172.16.0.110
ip forward-protocol nd
!
no ip http server
ip http secure-server
!
radius-server configure-nas
!
radius server dalo
address ipv4 10.3.3.13 auth-port 1812 acct-port 1813
automate-tester username test probe-on
key Z@Mradius
!
control-plane
!
end

This setup is giving me the following debug at the LAC (and nothing happening at the LNS):

LAC#pp159 PPP: Session handle[6000009F] Session id[159]
*Dec 7 02:37:00.334: [159]PPPoE 159: State LCP_NEGOTIATION Event PPP DISCONNECT
*Dec 7 02:37:00.334: [159]PPPoE 159: O PADT R:0050.5687.5cc0 L:0050.5687.195b Gi2
*Dec 7 02:37:00.334: [159]PPPoE 159: Destroying R:0050.5687.5cc0 L:0050.5687.195b Gi2
*Dec 7 02:37:00.334: [159]PPPoE 159: AAA get dynamic attrs
*Dec 7 02:37:00.334: [159]PPPoE 159: AAA account stopped
*Dec 7 02:37:00.334: [159]PPPoE 159: Segment (SSS class): UNPROVISION
*Dec 7 02:37:00.338: PPPoE 159: I PADT R:0050.5687.5cc0 L:0050.5687.195b Gi2
*Dec 7 02:37:20.516: PPPoE 0: I PADI R:0050.5687.5cc0 L:ffff.ffff.ffff Gi2
*Dec 7 02:37:20.516: Service tag: NULL Tag
*Dec 7 02:37:20.516: PPPoE 0: O PADO, R:0050.5687.195b L:0050.5687.5cc0 Gi2
*Dec 7 02:37:20.516: Service tag: NULL Tag
*Dec 7 02:37:22.564: PPPoE 0: I PADR R:0050.5687.5cc0 L:0050.5687.195b Gi2
*Dec 7 02:37:22.564: Service tag: NULL Tag
*Dec 7 02:37:22.564: PPPoE : encap string prepared
*Dec 7 02:37:22.564: [160]PPPoE 160: Access IE handle allocated
*Dec 7 02:37:22.564: [160]PPPoE 160: AAA get retrieved attrs
*Dec 7 02:37:22.564: [160]PPPoE 160: AAA get nas port details
*Dec 7 02:37:22.564: [160]PPPoE 160: Error adjusting nas port format did
*Dec 7 02:37:22.564: AAA/BIND(000000AC): Bind i/f Virtual-Template1
*Dec 7 02:37:22.564: [160]PPPoE 160: AAA get dynamic attrs
*Dec 7 02:37:22.564: [160]PPPoE 160: AAA unique ID AC allocated
*Dec 7 02:37:22.564: [160]PPPoE 160: No AAA accounting method list
*Dec 7 02:37:22.564: [160]PPPoE 160: Service request sent to SSS
*Dec 7 02:37:22.564: [160]PPPoE 160: Created, Service: None R:0050.5687.195b L:0050.5687.5cc0 Gi2
*Dec 7 02:37:22.564: [160]PPPoE 160: State NAS_PORT_POLICY_INQUIRY Event SSS MORE KEYS
*Dec 7 02:37:22.564: [160]PPPoE 160: data path set to PPP
*Dec 7 02:37:22.564: [160]PPPoE 160: Segment (SSS class): PROVISION
*Dec 7 02:37:22.564: [160]PPPoE 160: State PROVISION_PPP Event SSM PROVISIONED
*Dec 7 02:37:22.564: [160]PPPoE 160: O PADS R:0050.5687.5cc0 L:0050.5687.195b Gi2
*Dec 7 02:37:22.565: [160]PPPoE 160: Unable to Add ANCP Line attributes to the PPPoE Authen attributes
*Dec 7 02:37:22.565: ppp160 PPP: Using vpn set call direction
*Dec 7 02:37:22.565: ppp160 PPP: Treating connection as a callin
*Dec 7 02:37:22.565: ppp160 PPP: Session handle[3A0000A0] Session id[160]
*Dec 7 02:37:22.621: [160]PPPoE 160: State LCP_NEGOTIATION Event PPP DISCONNECT
*Dec 7 02:37:22.621: [160]PPPoE 160: O PADT R:0050.5687.5cc0 L:0050.5687.195b Gi2
*Dec 7 02:37:22.621: [160]PPPoE 160: Destroying R:0050.5687.5cc0 L:0050.5687.195b Gi2
*Dec 7 02:37:22.621: [160]PPPoE 160: AAA get dynamic attrs
*Dec 7 02:37:22.621: [160]PPPoE 160: AAA account stopped
*Dec 7 02:37:22.621: [160]PPPoE 160: Segment (SSS class): UNPROVISION
*Dec 7 02:37:22.625: PPPoE 160: I PADT R:0050.5687.5cc0 L:0050.5687.195b Gi2

THANKS FOR YOUR HELP