I'm trying to setup a C1841 as LAC and forward pppoe session via L2TP to a C7204 VXR router. It doesn't seem to work. There seems to be no request to setup the L2TP connection. I know that, because i setup an IPSEC tunnel from LAC to LNS and this IPSEC tunnel doesn't come up. The IPSEC tunnel works, because i can ping the destination for my L2TP tunnel (and the IPSEC tunnel comes up). But if i clear the IPSEC tunnel and look, if it comes up, when my PPPoE client tries to initiate a connection, the IPSEC tunnel doesn't come up. My setup is based on the configuration listed on this website:
The IOS versions used for this setup are c1841-advipservicesk9-mz.124-24.T8.bin on the LAC and c7200-adventerprisek9-mz.151-4.M3a.bin on the LNS. The part of the configuration for PPPoE and L2TP on the LAC is:
vpdn enable vpdn multihop vpdn logging vpdn logging user no vpdn ip udp ignore checksum vpdn search-order domain vpdn domain-delimiter % suffix
vpdn-group to-netde request-dialin protocol l2tp domain firstname.lastname@example.org initiate-to ip 10.0.0.1 priority 1 source-ip 192.168.22.23 local name ilse-client l2tp tunnel password mytunnel !
bba-group pppoe GROUP1 virtual-template 1 !
interface FastEthernet0/0 ip address 192.168.22.23 255.255.255.0 duplex auto speed auto crypto map ilse ! interface FastEthernet0/1 no ip address duplex auto speed auto pppoe enable group GROUP1 !
interface Virtual-Template1 ip unnumbered FastEthernet0/0 no snmp trap link-status ppp authentication chap callin !
... and on the LNS:
vpdn-group ilse-test accept-dialin protocol l2tp virtual-template 10 terminate-from hostname ilse-client source-ip 10.0.0.1 local name bras2.cs.net.de l2tp tunnel password mytunnel !
interface Loopback10 ip address 10.0.0.1 255.255.255.255
interface Virtual-Template10 description direct internet access via Telekom BSA mtu 1452 ip unnumbered Loopback0 no ip redirects ip load-sharing per-packet no ip route-cache ip tcp adjust-mss 1408 no logging event link-status ipv6 unnumbered Loopback0 ipv6 enable ipv6 rip TELEKOM-BSA enable ipv6 rip TELEKOM-BSA default-information only no snmp trap link-status keepalive 1 1 ppp authentication chap callin PPP ppp accounting PPP ppp chap refuse ppp pap refuse ppp link reorders !
In my opinion, the issue is not based on the configuration of the LNC, because i don't see the IPSEC tunnel between 192.168.22.23 and 10.0.0.1 come up (but a ping from LAC to 10.0.0.1 brigs the IPSEC tunnel up), so it seems, that my LAC does not try to initiate a L2TP connection to my LNS. How ca i fix this issue? Any ideas?
In scaled EVPN deployments it can be wise to name ESI that way to represent the site/physical port/etc it is attached to. Thus on some remote location you can easily verify where particular route/MAC is coming from. Similar to phone numbers, where...
Want to enable Feature EPFT with “routing-protocols-enable”. However ,it is throwing an error and ask to configure the following command: “non-subscriber-interfaces mac” which once enabled drops the traffic without any penalty.
XR-vm - CLI's
look for any process crash, review time stamp[if it is too old, then no immediate action needed]
verify if standby state is Ready and NSR-Ready
show proc cpu | exclude " 0%"
It's been a long standing ask for XR to support conditional route advertisements in BGP.
The expected option of using the
option in RPL currently can only be used at the default-inf...
On IOS-XR, Quality of Service has an extension to WRED (Weighted Random Early Detection) called Explicit Congestion Notification (ECN). ECN will mark packets instead of dropping them when the average queue length exceeds a specific threshold value. When c...