ā06-13-2013 11:35 PM - edited ā03-04-2019 08:12 PM
Hello,
we are testing an ASR1002-X which acts as LNS for L2TP tunnels.
- All tunnels are UP (sh vpdn all return list of tunnels)
- VirtualAccess interfaces are UP
- C routes are added in routing table
but ping remote IPs don't work !!!
Here technical information. Thanks a lot for help !
Regards,
Manuel
LNS1# sh ver
Cisco IOS Software, IOS-XE Software (X86_64_LINUX_IOSD-UNIVERSAL-M), Version 15.3(2)S1, RELEASE SOFTWARE (fc1)
Technical Support: http://www.cisco.com/techsupport
Copyright (c) 1986-2013 by Cisco Systems, Inc.
Compiled Mon 27-May-13 13:56 by mcpre
IOS XE Version: 03.09.01.S
..
ROM: IOS-XE ROMMON
LNS uptime is 1 day, 11 hours, 57 minutes
Uptime for this control processor is 1 day, 11 hours, 59 minutes
System returned to ROM by reload
System image file is "bootflash:asr1002x-universal.03.09.01.S.153-2.S1.SPA.bin"
Last reload reason: Reload Command
License Level: ipbase
License Type: Permanent
Next reload license Level: ipbase
cisco ASR1002-X (2RU-X) processor with 1151339K/6147K bytes of memory.
Processor board ID SSI16450ENF
6 Gigabit Ethernet interfaces
32768K bytes of non-volatile configuration memory.
4194304K bytes of physical memory.
6684671K bytes of eUSB flash at bootflash:.
LNS1# show caller user login@domain.tdr
User: login@domain.tdr, line Vi2.13, service PPPoVPDN
Connected for 00:04:43
Timeouts: Limit Remaining Timer Type
1d06h 1d05h Session
PPP: LCP Open, CHAP (<-), IPCP
IP: Local W.X.Y.254, remote W.X.Y.17
Counts: 69 packets input, 960 bytes
73 packets output, 1026 bytes
LNS1# show interfaces virtual-access 2.13
Virtual-Access2.13 is up, line protocol is up
Hardware is Virtual Access interface
Interface is unnumbered. Using address of Loopback0 (W.X.Y.254)
MTU 1460 bytes, BW 1000000 Kbit/sec, DLY 100000 usec,
reliability 255/255, txload 1/255, rxload 1/255
Encapsulation PPP, LCP Open
Open: IPCP
PPPoVPDN vaccess, cloned from Virtual-Template1
Vaccess status 0x0
Protocol l2tp, tunnel id 16822, session id 65182
Keepalive set (10 sec)
71 packets input, 988 bytes
75 packets output, 1054 bytes
Time to interface disconnect: absolute 1d05h
Last clearing of "show interface" counters never
LNS1# show interfaces virtual-access 2.13 configuration
Virtual-Access2.13 is an VPDN link (sub)interface
Derived configuration : 378 bytes
!
interface Virtual-Access2.13
mtu 1460
ip unnumbered Loopback0
ip nat inside
ip tcp adjust-mss 1420
ip policy route-map INTERNET_VT1
timeout absolute 1800 0
no peer default ip address
ppp authentication chap pap DSL-AAA
ppp authorization DSL-AAA
ppp accounting DSL-AAA
ppp ipcp address required
ppp ipcp address accept
ip virtual-reassembly
end
LNS1#sh ip route
...
C W.X.Y.20/32 is directly connected, Virtual-Access2.13
C W.X.Y.21/32 is directly connected, Virtual-Access2.15
C W.X.Y.22/32 is directly connected, Virtual-Access2.34
C W.X.Y.23/32 is directly connected, Virtual-Access2.23
C W.X.Y.24/32 is directly connected, Virtual-Access2.46
C W.X.Y.28/32 is directly connected, Virtual-Access2.50
C W.X.Y.30/32 is directly connected, Virtual-Access2.67
C W.X.Y.31/32 is directly connected, Virtual-Access2.39
...
LNS1#show vpdn tunnel all
L2TP Tunnel Information Total tunnels 5 sessions 81
Tunnel id 16822 is up, remote id is 13259, 47 active sessions
Remotely initiated tunnel
Tunnel state is established, time since change 01:11:58
Tunnel transport is UDP (17)
Remote tunnel name is lac-01
Internet Address A.B.C.D, port 1701
Local tunnel name is LNS1
Internet Address W.X.Y.254, port 1701
L2TP class for tunnel is LNS
Counters, taking last clear into account:
39629 packets sent, 39398 received
561488 bytes sent, 557740 received
Last clearing of counters never
Counters, ignoring last clear:
39629 packets sent, 39398 received
561488 bytes sent, 557740 received
Control Ns 119, Nr 103
Local RWS 1024 (default), Remote RWS 64
Control channel Congestion Control is disabled
Tunnel PMTU checking disabled
Retransmission time 1, max 1 seconds
Unsent queuesize 0, max 0
Resend queuesize 0, max 4
Total resends 0, ZLB ACKs sent 52
Total out-of-order dropped pkts 0
Total out-of-order reorder pkts 0
Total peer authentication failures 0
Current no session pak queue check 0 of 5
Retransmit time distribution: 0 0 0 0 0 0 0 0 0
Control message authentication is disabled
VPDN group for tunnel is LNS
ā06-22-2013 03:52 AM
Hello Manuel,
in order to get better help you should post the router configuration file as a text file attachment.
You are running IOS XR 3.9.01 that is very recent and contains the fixes to several issues on the platform.
No show commmand output shows anything wrong and also you didn't added the faling ping attempts
Hope to help
Giuseppe
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide