Solved: Re: Help with Cisco 867vae-k9 config got connection to TalkTalk fiber VDSL2

avasyura · ‎05-16-2020

Dear all,

I’ve the router and recently upgraded the the TalkTalk broadband to fiber option.

My understanding that the router supports VDSL2 but, unfortunately, I’m not an expert and struggle to configure it.

TalkTalk suggest the following settings:

Username	We use automated network authentication so there is no need for a username. You can leave this blank.
Password	We use automated network authentication so there is no need for a password. You can leave this blank.
Transfer Mode/Loop Encaps	PTM
VLAN ID	101
MTU	1500
DNS	Set as automatic (or similar)
Priority	0
Authentication	DHCP/IPoE

.

could you please suggest the supporting config for it.

many thanks for your help.

Georg Pauwen · ‎05-18-2020

Hello,

remove the dialer interfaces and use Ethernet0.101 as the outgoing interface. The config should look like below (changes marked in bold):

logging buffered 51200 warnings
enable secret 4 U7N6mvY6.M.qHUoX9QigibYe3t47U5ggJgGv1WKhlks
!
no aaa new-model
wan mode dsl
!
ip dhcp excluded-address 10.10.10.1
ip dhcp excluded-address 192.168.1.1
ip dhcp excluded-address 192.168.1.2 192.168.1.10
!
ip dhcp pool ccp-pool
import all
network 10.10.10.0 255.255.255.248
default-router 10.10.10.1
lease 0 2
!
ip dhcp pool ccp-pool1
import all
network 192.168.1.0 255.255.255.0
dns-server 8.8.8.8 8.8.4.4
default-router 192.168.1.1
!
ip dhcp pool Terminal
host 192.168.1.2 255.255.255.0
client-identifier 0100.90f5.dc32.0f
!
ip dhcp pool Cisco-AP
host 192.168.1.3 255.255.255.0
hardware-address 70f3.5a58.0300
client-name CiscoAP
!
ip dhcp pool HIK-Vision
host 192.168.1.4 255.255.255.0
hardware-address a414.37c6.5ea0
client-name CCTV
!
ip dhcp pool Printer
host 192.168.1.5 255.255.255.0
hardware-address 48ba.4e34.b5fe
client-name M281fdw
!
ip dhcp pool HomeServer
host 192.168.1.10 255.255.255.0
hardware-address 0008.9bbf.316e
client-name HomeServer
!
no ip domain lookup
ip multicast-routing
ip cef
no ipv6 cef
!
username vasyua privilege 15 secret 4 U7N6mvY6.M.qHUoX9QigibYe3t47U5ggJgGv1WKhlks
!
controller VDSL 0
!
interface ATM0
no ip address
shutdown
no atm ilmi-keepalive
!
interface Ethernet0
description $ETH-WAN$
no ip address
!
interface Ethernet0.101
encapsulation dot1Q 101
-> ip address dhcp
--> ip nat outside
no ip redirects
no ip unreachables
no ip proxy-arp
ip flow ingress
ip virtual-reassembly in
no cdp enable
!
interface FastEthernet0
no ip address
!
interface FastEthernet1
no ip address
!
interface FastEthernet2
no ip address
!
interface FastEthernet3
no ip address
!
interface GigabitEthernet0
switchport access vlan 2
no ip address
!
interface GigabitEthernet1
no ip address
!
interface Vlan1
description ***Legacy***
ip address 10.10.10.1 255.255.255.248
ip nat inside
ip virtual-reassembly in
ip tcp adjust-mss 1412
shutdown
!
interface Vlan2
ip address 192.168.1.1 255.255.255.0
ip nat inside
ip virtual-reassembly in
!
ip forward-protocol nd
ip http server
ip http access-class 10
ip http authentication local
ip http secure-server
ip http timeout-policy idle 60 life 86400 requests 10000
!
--> ip nat inside source list MYNAT interface Ethernet0.101 overload
--> ip route 0.0.0.0 0.0.0.0 Ethernet0.101
!
ip access-list extended MYNAT
permit ip 192.168.1.0 0.0.0.255 any
!
access-list 1 remark INSIDE_IF=Vlan1
access-list 1 remark CCP_ACL Category=2
access-list 1 permit 10.10.10.0 0.0.0.7
access-list 1 permit 192.168.1.0 0.0.0.255
access-list 10 remark ACL for main-terminal
access-list 10 permit 192.168.1.2
access-list 23 permit 10.10.10.0 0.0.0.7
dialer-list 1 protocol ip permit
mac-address-table aging-time 15
no cdp run
!
banner exec ^C
% Password expiration warning.
-----------------------------------------------------------------------
hidden to save space

^C
banner login ^C
-----------------------------------------------------------------------
Cisco Configuration Professional (Cisco CP) is installed on this device.
hidden to save space

-----------------------------------------------------------------------
^C
!
line con 0
password 7 12340A0411041B557A6A
login
no modem enable
line aux 0
line vty 0 4
access-class 23 in
privilege level 15
password 7 062B00324F411E485556
login
transport input telnet ssh
!
scheduler allocate 60000 1000
!
end

View solution in original post

paul driver · ‎05-16-2020

Hello
Depending point-to-point protocol you are using the configuration is slightly different, please review a possible configuration for either P2P mode which shows basic a setup of PPP and then dhcp and network translation for your lan users.

PPoE
vpdn enable
vpdn-group 1
request-dialin
protocol pppoe
or

wan mode dsl

interface FastEthernet xxx
Description WAN interface
ip nat outside
pppoe enable group global
pppoe-client dial-pool-number 1

interface ATM0
shut

PPoA
interface ATM0
Description WAN interface
no ip address
ip nat outside
ip virtual-reassembly
no atm ilmi-keepalive
pvc 8/35
encapsulation aal5mux ppp dialer
dialer pool-member 1
dsl operating-mode auto

Either mode
interface vlan x
ip address 172.16.1.254 255.255.255.0
ip nat inside

interface dialer 0
ip address negotiated
ip mtu 1492
encapsulation ppp
ppp authentication chap
dialer pool 1
dialer-group 1

dialer-list 1 protocol ip permit

access-list 1 permit 172.16.1.0 0.0.0.255
ip nat inside source list 1 interface dialer 0 overload

ip route 0.0.0.0 0.0.0.0 dialer 0

ip dhcp pool LAN
network 172.16.1.0/24
lease 0 8
default-gateway 172.16.1.254
dns-server 8.8.8.8 8.8.4.4

Please rate and mark as an accepted solution if you have found any of the information provided useful.
This then could assist others on these forums to find a valuable answer and broadens the community’s global network.

Kind Regards
Paul

avasyura · ‎05-17-2020

Thank you Paul.

I think that I need PPoE.

For whatever reason the only available protocol to choose in vpdn is L2TP.

I tried to follow a config suggested but no success either. I've posted my config and log with errors.

Could you kindly please have a look and suggest a change.

Many thanks

Anton

paul driver · ‎05-17-2020

Hello
I dont see any configuration of your router, Also note the interfaces on that configuration i posted may not relate to the interfaces on your router and the config may need a bit of tweaking to establish connection but it wont be that far off, So please post the output of.

sh ip interface brief

Also another thing i have found doing a couple of these rts is having a tagged interface, some ISPs require them so do you know if your ISP requires one? The ppoe configuration i posted is a untagged fastethernet interface for the vlan of 1 however if this is incorrect then a sub-interface on that interface would be required to accommodate any tagged interface your isp is expecting.

Please rate and mark as an accepted solution if you have found any of the information provided useful.
This then could assist others on these forums to find a valuable answer and broadens the community’s global network.

Kind Regards
Paul

Georg Pauwen · ‎05-16-2020

Hello,

have a look at the sample configuration below:

Current configuration : 6744 bytes
!
version 15.3
no service pad
service tcp-keepalives-in
service tcp-keepalives-out
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname 867VAEK9
!
boot-start-marker
boot-end-marker
!
aqm-register-fnf
!
no logging console
no logging monitor
enable secret 5 $1$kIb9$/Wep88LPdIuKPNxqC9/kC0
!
no aaa new-model
!
no ip source-route
no ip gratuitous-aro
!
ip dhcp excluded-address 192.168.1.1
!
ip dhcp pool LAN
network 192.168.1.0 255.255.255.0
dns-server 8.8.8.8
default-router 192.168.1.1
!
no ip bootp server
no ip domain lookup
ip multicast-routing
ip cef
no ipv6 cef
!
multilink bundle-name authenticated
!
license udi pid C897VA-K9 sn FCZ191293EL
!
controller VDSL 0
!
ip ssh time-out 60
ip ssh authentication-retries 2
!
interface ATM0
no ip address
shutdown
no atm ilmi-keepalive
!
interface ATM0.1 point-to-point
!
interface BRI0
no ip address
encapsulation hdlc
shutdown
isdn termination multidrop
!
interface Ethernet0
no ip address
!
interface Ethernet0.101
description Talk_Talk_WAN
encapsulation dot1Q 101
no ip redirects
no ip unreachables
no ip proxy-arp
ip flow ingress
ip virtual-reassembly in
pppoe enable group global
pppoe-client dial-pool-number 1
!
interface GigabitEthernet0
switchport mode trunk
no ip address
!
interface GigabitEthernet1
no ip address
!
interface GigabitEthernet2
no ip address
!
interface GigabitEthernet3
no ip address
!
interface GigabitEthernet4
no ip address
!
interface GigabitEthernet5
no ip address
!
interface GigabitEthernet6
no ip address
!
interface GigabitEthernet7
no ip address
!
interface GigabitEthernet8
no ip address
shutdown
duplex auto
speed auto
!
interface Vlan1
ip address 192.168.1.1 255.255.255.0
ip nat inside

ip virtual-reassembly in
!
interface Dialer1
description TALK_TALK_WAN
ip address negotiated
ip mtu 1452
ip flow ingress
ip nat outside
ip virtual-reassembly in
encapsulation ppp
ip tcp adjust-mss 1452
dialer pool 1
dialer-group 1
ppp ipcp dns request accept
ppp ipcp route default
ppp ipcp address accept
no cdp enable
!
ip forward-protocol nd
no ip http server
ip http authentication local
ip http secure-server
!
ip nat inside source list 1 interface Dialer1 overload
ip route 0.0.0.0 0.0.0.0 Dialer1
!
access-list 1 permit 192.168.1.0 0.0.0.255
!
dialer-list 1 protocol ip permit
!
mgcp behavior rsip-range tgcp-only
mgcp behavior comedia-role none
mgcp behavior comedia-check-media-src disable
mgcp behavior comedia-sdp-force disable
!
mgcp profile default
!
line con 0
exec-timeout 5 0
logging synchronous
no modem enable
transport output telnet
line aux 0
line vty 0 4
privilege level 15
password cisco
login
transport input all
!
scheduler allocate 20000 1000
!
end

avasyura · ‎05-17-2020

Thank you very much for your help.

I followed your config but unfortunately, no success.

This are the lines from the log:

*May 17 14:41:10.859: %CONTROLLER-5-UPDOWN: Controller VDSL 0, changed state to up
*May 17 14:41:20.059: %LINK-3-UPDOWN: Interface Ethernet0, changed state to up
*May 17 14:41:21.059: %LINEPROTO-5-UPDOWN: Line protocol on Interface Ethernet0, changed state to up
*May 17 14:41:50.435: %DIALER-6-BIND: Interface Vi1 bound to profile Di1
*May 17 14:41:50.439: %LINK-3-UPDOWN: Interface Virtual-Access1, changed state to up
*May 17 14:41:52.491: %DIALER-6-UNBIND: Interface Vi1 unbound from profile Di1
*May 17 14:41:52.495: %LINK-3-UPDOWN: Interface Virtual-Access1, changed state to down
*May 17 14:42:14.655: %DIALER-6-BIND: Interface Vi1 bound to profile Di1
*May 17 14:42:14.659: %LINK-3-UPDOWN: Interface Virtual-Access1, changed state to up
*May 17 14:42:17.671: %DIALER-6-UNBIND: Interface Vi1 unbound from profile Di1
*May 17 14:42:17.675: %LINK-3-UPDOWN: Interface Virtual-Access1, changed state to down

Could you pls have a look at my config below and suggest any amendments.

Many thanks for your help!!!

logging buffered 51200 warnings
enable secret 4 U7N6mvY6.M.qHUoX9QigibYe3t47U5ggJgGv1WKhlks
!
no aaa new-model
wan mode dsl
!
!
!
ip dhcp excluded-address 10.10.10.1
ip dhcp excluded-address 192.168.1.1
ip dhcp excluded-address 192.168.1.2 192.168.1.10
!
ip dhcp pool ccp-pool
import all
network 10.10.10.0 255.255.255.248
default-router 10.10.10.1
lease 0 2
!
ip dhcp pool ccp-pool1
import all
network 192.168.1.0 255.255.255.0
dns-server 8.8.8.8 8.8.4.4
default-router 192.168.1.1
!
ip dhcp pool Terminal
host 192.168.1.2 255.255.255.0
client-identifier 0100.90f5.dc32.0f
!
ip dhcp pool Cisco-AP
host 192.168.1.3 255.255.255.0
hardware-address 70f3.5a58.0300
client-name CiscoAP
!
ip dhcp pool HIK-Vision
host 192.168.1.4 255.255.255.0
hardware-address a414.37c6.5ea0
client-name CCTV
!
ip dhcp pool Printer
host 192.168.1.5 255.255.255.0
hardware-address 48ba.4e34.b5fe
client-name M281fdw
!
ip dhcp pool HomeServer
host 192.168.1.10 255.255.255.0
hardware-address 0008.9bbf.316e
client-name HomeServer
!
!
!
no ip domain lookup
ip multicast-routing
ip cef
no ipv6 cef
!
!
!
!
!
!
!
username vasyua privilege 15 secret 4 U7N6mvY6.M.qHUoX9QigibYe3t47U5ggJgGv1WKhlks
!
!
controller VDSL 0
!
!
!
!
!
!
!
!
!
!
!
!
!
interface ATM0
no ip address
shutdown
no atm ilmi-keepalive
!
interface Ethernet0
description $ETH-WAN$
no ip address
!
interface Ethernet0.101
encapsulation dot1Q 101
no ip redirects
no ip unreachables
no ip proxy-arp
ip flow ingress
ip virtual-reassembly in
pppoe-client dial-pool-number 1
no cdp enable
!
interface FastEthernet0
no ip address
!
interface FastEthernet1
no ip address
!
interface FastEthernet2
no ip address
!
interface FastEthernet3
no ip address
!
interface GigabitEthernet0
switchport access vlan 2
no ip address
!
interface GigabitEthernet1
description $ETH-LAN$
ip address 192.168.1.1 255.255.255.0
shutdown
duplex auto
speed auto
!
interface Vlan1
description ***Legacy***
ip address 10.10.10.1 255.255.255.248
ip nat inside
ip virtual-reassembly in
ip tcp adjust-mss 1412
shutdown
!
interface Vlan2
ip address 192.168.1.1 255.255.255.0
ip nat inside
ip virtual-reassembly in
!
interface Dialer0
ip address negotiated
ip mtu 1452
ip nat outside
ip virtual-reassembly in
encapsulation ppp
shutdown
dialer pool 1
dialer-group 1
no cdp enable
!
interface Dialer1
description ***TO MY VDSL LINE***
ip address negotiated
no ip redirects
no ip proxy-arp
ip mtu 1452
ip flow ingress
ip nat outside
ip virtual-reassembly in
encapsulation ppp
ip tcp adjust-mss 1452
dialer pool 1
dialer-group 1
ppp ipcp dns request accept
ppp ipcp route default
ppp ipcp address accept
no cdp enable
!
ip forward-protocol nd
ip http server
ip http access-class 10
ip http authentication local
ip http secure-server
ip http timeout-policy idle 60 life 86400 requests 10000
!
!
ip nat inside source list MYNAT interface Dialer1 overload
ip route 0.0.0.0 0.0.0.0 Dialer1
!
ip access-list extended MYNAT
permit ip 192.168.1.0 0.0.0.255 any
!
access-list 1 remark INSIDE_IF=Vlan1
access-list 1 remark CCP_ACL Category=2
access-list 1 permit 10.10.10.0 0.0.0.7
access-list 1 permit 192.168.1.0 0.0.0.255
access-list 10 remark ACL for main-terminal
access-list 10 permit 192.168.1.2
access-list 23 permit 10.10.10.0 0.0.0.7
dialer-list 1 protocol ip permit
mac-address-table aging-time 15
no cdp run
!
banner exec ^C
% Password expiration warning.
-----------------------------------------------------------------------

hidden to save space

^C
banner login ^C
-----------------------------------------------------------------------
Cisco Configuration Professional (Cisco CP) is installed on this device.
hidden to save space

-----------------------------------------------------------------------
^C
!
line con 0
password 7 12340A0411041B557A6A
login
no modem enable
line aux 0
line vty 0 4
access-class 23 in
privilege level 15
password 7 062B00324F411E485556
login
transport input telnet ssh
!
scheduler allocate 60000 1000
!
end

Georg Pauwen · ‎05-18-2020

Hello,

make the changes marked in bold:

logging buffered 51200 warnings
enable secret 4 U7N6mvY6.M.qHUoX9QigibYe3t47U5ggJgGv1WKhlks
!
no aaa new-model
wan mode dsl
!
ip dhcp excluded-address 10.10.10.1
ip dhcp excluded-address 192.168.1.1
ip dhcp excluded-address 192.168.1.2 192.168.1.10
!
ip dhcp pool ccp-pool
import all
network 10.10.10.0 255.255.255.248
default-router 10.10.10.1
lease 0 2
!
ip dhcp pool ccp-pool1
import all
network 192.168.1.0 255.255.255.0
dns-server 8.8.8.8 8.8.4.4
default-router 192.168.1.1
!
ip dhcp pool Terminal
host 192.168.1.2 255.255.255.0
client-identifier 0100.90f5.dc32.0f
!
ip dhcp pool Cisco-AP
host 192.168.1.3 255.255.255.0
hardware-address 70f3.5a58.0300
client-name CiscoAP
!
ip dhcp pool HIK-Vision
host 192.168.1.4 255.255.255.0
hardware-address a414.37c6.5ea0
client-name CCTV
!
ip dhcp pool Printer
host 192.168.1.5 255.255.255.0
hardware-address 48ba.4e34.b5fe
client-name M281fdw
!
ip dhcp pool HomeServer
host 192.168.1.10 255.255.255.0
hardware-address 0008.9bbf.316e
client-name HomeServer
!
no ip domain lookup
ip multicast-routing
ip cef
no ipv6 cef
!
username vasyua privilege 15 secret 4 U7N6mvY6.M.qHUoX9QigibYe3t47U5ggJgGv1WKhlks
!
controller VDSL 0
!
interface ATM0
no ip address
shutdown
no atm ilmi-keepalive
!
interface Ethernet0
description $ETH-WAN$
no ip address
!
interface Ethernet0.101
encapsulation dot1Q 101
no ip redirects
no ip unreachables
no ip proxy-arp
ip flow ingress
ip virtual-reassembly in
--> pppoe enable group global
pppoe-client dial-pool-number 1
no cdp enable
!
interface FastEthernet0
no ip address
!
interface FastEthernet1
no ip address
!
interface FastEthernet2
no ip address
!
interface FastEthernet3
no ip address
!
interface GigabitEthernet0
switchport access vlan 2
no ip address
!
interface GigabitEthernet1
no ip address
!
interface Vlan1
description ***Legacy***
ip address 10.10.10.1 255.255.255.248
ip nat inside
ip virtual-reassembly in
ip tcp adjust-mss 1412
shutdown
!
interface Vlan2
ip address 192.168.1.1 255.255.255.0
ip nat inside
ip virtual-reassembly in
!
--> no interface Dialer0
ip address negotiated
ip mtu 1452
ip nat outside
ip virtual-reassembly in
encapsulation ppp
shutdown
dialer pool 1
dialer-group 1
no cdp enable
!
interface Dialer1
description ***TO MY VDSL LINE***
ip address negotiated
no ip redirects
no ip proxy-arp
ip mtu 1452
ip flow ingress
ip nat outside
ip virtual-reassembly in
encapsulation ppp
ip tcp adjust-mss 1452
dialer pool 1
dialer-group 1
ppp ipcp dns request accept
ppp ipcp route default
ppp ipcp address accept
no cdp enable
!
ip forward-protocol nd
ip http server
ip http access-class 10
ip http authentication local
ip http secure-server
ip http timeout-policy idle 60 life 86400 requests 10000
!
ip nat inside source list MYNAT interface Dialer1 overload
ip route 0.0.0.0 0.0.0.0 Dialer1
!
ip access-list extended MYNAT
permit ip 192.168.1.0 0.0.0.255 any
!
access-list 1 remark INSIDE_IF=Vlan1
access-list 1 remark CCP_ACL Category=2
access-list 1 permit 10.10.10.0 0.0.0.7
access-list 1 permit 192.168.1.0 0.0.0.255
access-list 10 remark ACL for main-terminal
access-list 10 permit 192.168.1.2
access-list 23 permit 10.10.10.0 0.0.0.7
dialer-list 1 protocol ip permit
mac-address-table aging-time 15
no cdp run
!
banner exec ^C
% Password expiration warning.
-----------------------------------------------------------------------
hidden to save space

^C
banner login ^C
-----------------------------------------------------------------------
Cisco Configuration Professional (Cisco CP) is installed on this device.
hidden to save space

-----------------------------------------------------------------------
^C
!
line con 0
password 7 12340A0411041B557A6A
login
no modem enable
line aux 0
line vty 0 4
access-class 23 in
privilege level 15
password 7 062B00324F411E485556
login
transport input telnet ssh
!
scheduler allocate 60000 1000
!
end

paul driver · ‎05-18-2020

Hello

Please try the follwoing:

interface Ethernet0.101
pppoe enable group global
ip nat outside

Please rate and mark as an accepted solution if you have found any of the information provided useful.
This then could assist others on these forums to find a valuable answer and broadens the community’s global network.

Kind Regards
Paul

avasyura · ‎05-18-2020

Many thanks for your help Paul!

Really appreciate it.

As you suggested, I've deleted the Dialer0 interface and enabled ip nat outside on the Ethernet0.101 interface.

However, while i can input the pppoe enable group global command, it does not reflect in the config file.

Any suggestions?

Many thanks once again.

Anton

Georg Pauwen · ‎05-18-2020

Hello,

what is the LED status (color) of the interface connected to the VDSL ?

avasyura · ‎05-18-2020

The color is green - Link LED - always green and ACT LED is flashing green

Georg Pauwen · ‎05-18-2020

Hello,

can you turn on:

debug ppp negotiation

and post the output ?

avasyura · ‎05-18-2020

Hi Georg,

Pls find the ouput of the show ip interface brief
Interface IP-Address OK? Method Status Protocol
ATM0 unassigned YES NVRAM administratively down down
Dialer1 unassigned YES NVRAM up up
Ethernet0 unassigned YES NVRAM up up
Ethernet0.101 unassigned YES unset up up
FastEthernet0 unassigned YES unset down down
FastEthernet1 unassigned YES unset down down
FastEthernet2 unassigned YES unset down down
FastEthernet3 unassigned YES unset down down
GigabitEthernet0 unassigned YES unset up up
GigabitEthernet1 192.168.1.1 YES NVRAM administratively down down
NVI0 unassigned YES unset administratively down down
Virtual-Access1 unassigned YES unset down down
Vlan1 10.10.10.1 YES NVRAM administratively down down
Vlan2 192.168.1.1 YES NVRAM up up

Also, this is the output of the show controllers vdsl 0 command

Controller VDSL 0 is UP

Daemon Status: NA

XTU-R (DS) XTU-C (US)
Chip Vendor ID: 'BDCM' 'IFTN'
Chip Vendor Specific: 0x0000 0xD086
Chip Vendor Country: 0xB500 0xB500
Modem Vendor ID: 'CSCO' 'IFTN'
Modem Vendor Specific: 0x4602 0xD086
Modem Vendor Country: 0xB500 0xB500
Serial Number Near: GMK132302KZ 867VAE- 15.2(4)M
Serial Number Far:
Modem Version Near: 15.2(4)M
Modem Version Far: 0xD086

Modem Status: TC Sync (Showtime!)
DSL Config Mode: VDSL2
Trained Mode: G.993.2 (VDSL2) Profile 17a
TC Mode: PTM
Selftest Result: 0x00
DELT configuration: disabled
DELT state: not running
Trellis: ON ON
SRA: disabled disabled
SRA count: 0 0
Bit swap: enabled enabled
Bit swap count: 0 0
Line Attenuation: 0.0 dB 0.0 dB
Signal Attenuation: 0.0 dB 0.0 dB
Noise Margin: 26.0 dB 21.5 dB
Attainable Rate: 89448 kbits/s 32000 kbits/s
Actual Power: 13.0 dBm - 3.9 dBm
Per Band Status: D1 D2 D3 U0 U1 U2 U3
Line Attenuation(dB): 4.8 11.7 18.3 3.4 9.8 14.3 N/A
Signal Attenuation(dB): 4.8 11.7 18.3 3.1 9.7 14.2 N/A
Noise Margin(dB): 25.9 26.1 26.1 26.0 N/A 21.4 N/A
Total FECC: 1 279
Total ES: 6 12
Total SES: 6 0
Total LOSS: 5 0
Total UAS: 13453 19508
Total LPRS: 0 0
Total LOFS: 5 0
Total LOLS: 0 0

Full inits: 3
Failed full inits: 0
Short inits: 0
Failed short inits: 0

Firmware Source File Name (version)
-------- ------ -------------------
VDSL embedded N/A (0)

Modem FW Version: 23j
Modem PHY Version: A2pv6C035j.d23j
Vendor Version: Ap6v35j.23j 68

DS Channel1 DS Channel0 US Channel1 US Channel0
Speed (kbps): 0 39998 0 9995
SRA Previous Speed: 0 0 0 0
Previous Speed: 0 39998 0 9995
Reed-Solomon EC: 0 0 0 93
CRC Errors: 0 1786 0 48
Header Errors: 0 0 0 0
Interleave (ms): 0.00 0.00 0.00 0.00
Actual INP: 0.00 0.00 0.00 0.00

Training Log : Stopped
Training Log Filename : flash:vdsllog.bin

Finally, please find the debug output below. It's confusing as authentication is not required according to TalkTalk...

*May 18 16:31:31.838: %DIALER-6-BIND: Interface Vi1 bound to profile Di1
*May 18 16:31:31.842: %LINK-3-UPDOWN: Interface Virtual-Access1, changed state to up
*May 18 16:31:31.842: Vi1 PPP: Sending cstate UP notification
*May 18 16:31:31.842: Vi1 PPP: Processing CstateUp message
*May 18 16:31:31.842: PPP: Alloc Context [85AC982C]
*May 18 16:31:31.842: ppp45 PPP: Phase is ESTABLISHING
*May 18 16:31:31.842: Vi1 PPP: Using dialer call direction
*May 18 16:31:31.842: Vi1 PPP: Treating connection as a callout
*May 18 16:31:31.842: Vi1 PPP: Session handle[1B00002D] Session id[45]
*May 18 16:31:31.842: Vi1 LCP: Event[OPEN] State[Initial to Starting]
*May 18 16:31:31.842: Vi1 PPP: No remote authentication for call-out
*May 18 16:31:31.842: Vi1 LCP: O CONFREQ [Starting] id 1 len 10
*May 18 16:31:31.842: Vi1 LCP: MagicNumber 0x424957F4 (0x0506424957F4)
*May 18 16:31:31.842: Vi1 LCP: Event[UP] State[Starting to REQsent]
*May 18 16:31:31.850: Vi1 LCP: I CONFREQ [REQsent] id 98 len 15
*May 18 16:31:31.854: Vi1 LCP: AuthProto CHAP (0x0305C22305)
*May 18 16:31:31.854: Vi1 LCP: MagicNumber 0x7D075140 (0x05067D075140)
*May 18 16:31:31.854: Vi1 LCP: O CONFACK [REQsent] id 98 len 15
*May 18 16:31:31.854: Vi1 LCP: AuthProto CHAP (0x0305C22305)
*May 18 16:31:31.854: Vi1 LCP: MagicNumber 0x7D075140 (0x05067D075140)
*May 18 16:31:31.854: Vi1 LCP: Event[Receive ConfReq+] State[REQsent to ACKsent]
*May 18 16:31:31.854: Vi1 LCP: I CONFACK [ACKsent] id 1 len 10
*May 18 16:31:31.854: Vi1 LCP: MagicNumber 0x424957F4 (0x0506424957F4)
*May 18 16:31:31.854: Vi1 LCP: Event[Receive ConfAck] State[ACKsent to Open]
*May 18 16:31:31.858: Vi1 PPP: Phase is AUTHENTICATING, by the peer
*May 18 16:31:31.858: Vi1 LCP: State is Open
*May 18 16:31:31.862: Vi1 CHAP: I CHALLENGE id 154 len 75 from "nge001.col"
*May 18 16:31:31.862: Vi1 CHAP: Unable to authenticate for peer
*May 18 16:31:31.862: Vi1 PPP DISC: User failed CHAP authentication
*May 18 16:31:31.862: PPP: NET STOP send to AAA.
*May 18 16:31:31.862: Vi1 LCP: O TERMREQ [Open] id 2 len 4
*May 18 16:31:31.862: Vi1 LCP: Event[CLOSE] State[Open to Closing]
*May 18 16:31:31.862: Vi1 PPP: Phase is TERMINATING
*May 18 16:31:31.870: Vi1 LCP: I TERMACK [Closing] id 2 len 4
*May 18 16:31:31.870: Vi1 PPP: No remote authentication for call-out
*May 18 16:31:31.870: Vi1 LCP: Event[Receive TermAck] State[Closing to Closed]
*May 18 16:31:31.870: Vi1 LCP: Event[DOWN] State[Closed to Initial]
*May 18 16:31:31.870: Vi1 PPP: Phase is DOWN
*May 18 16:31:31.870: %DIALER-6-UNBIND: Interface Vi1 unbound from profile Di1
*May 18 16:31:31.874: %LINK-3-UPDOWN: Interface Virtual-Access1, changed state to down

Any suggestions????

Thanks again,

Anton

Georg Pauwen · ‎05-18-2020

Hello,

remove the dialer interfaces and use Ethernet0.101 as the outgoing interface. The config should look like below (changes marked in bold):

logging buffered 51200 warnings
enable secret 4 U7N6mvY6.M.qHUoX9QigibYe3t47U5ggJgGv1WKhlks
!
no aaa new-model
wan mode dsl
!
ip dhcp excluded-address 10.10.10.1
ip dhcp excluded-address 192.168.1.1
ip dhcp excluded-address 192.168.1.2 192.168.1.10
!
ip dhcp pool ccp-pool
import all
network 10.10.10.0 255.255.255.248
default-router 10.10.10.1
lease 0 2
!
ip dhcp pool ccp-pool1
import all
network 192.168.1.0 255.255.255.0
dns-server 8.8.8.8 8.8.4.4
default-router 192.168.1.1
!
ip dhcp pool Terminal
host 192.168.1.2 255.255.255.0
client-identifier 0100.90f5.dc32.0f
!
ip dhcp pool Cisco-AP
host 192.168.1.3 255.255.255.0
hardware-address 70f3.5a58.0300
client-name CiscoAP
!
ip dhcp pool HIK-Vision
host 192.168.1.4 255.255.255.0
hardware-address a414.37c6.5ea0
client-name CCTV
!
ip dhcp pool Printer
host 192.168.1.5 255.255.255.0
hardware-address 48ba.4e34.b5fe
client-name M281fdw
!
ip dhcp pool HomeServer
host 192.168.1.10 255.255.255.0
hardware-address 0008.9bbf.316e
client-name HomeServer
!
no ip domain lookup
ip multicast-routing
ip cef
no ipv6 cef
!
username vasyua privilege 15 secret 4 U7N6mvY6.M.qHUoX9QigibYe3t47U5ggJgGv1WKhlks
!
controller VDSL 0
!
interface ATM0
no ip address
shutdown
no atm ilmi-keepalive
!
interface Ethernet0
description $ETH-WAN$
no ip address
!
interface Ethernet0.101
encapsulation dot1Q 101
-> ip address dhcp
--> ip nat outside
no ip redirects
no ip unreachables
no ip proxy-arp
ip flow ingress
ip virtual-reassembly in
no cdp enable
!
interface FastEthernet0
no ip address
!
interface FastEthernet1
no ip address
!
interface FastEthernet2
no ip address
!
interface FastEthernet3
no ip address
!
interface GigabitEthernet0
switchport access vlan 2
no ip address
!
interface GigabitEthernet1
no ip address
!
interface Vlan1
description ***Legacy***
ip address 10.10.10.1 255.255.255.248
ip nat inside
ip virtual-reassembly in
ip tcp adjust-mss 1412
shutdown
!
interface Vlan2
ip address 192.168.1.1 255.255.255.0
ip nat inside
ip virtual-reassembly in
!
ip forward-protocol nd
ip http server
ip http access-class 10
ip http authentication local
ip http secure-server
ip http timeout-policy idle 60 life 86400 requests 10000
!
--> ip nat inside source list MYNAT interface Ethernet0.101 overload
--> ip route 0.0.0.0 0.0.0.0 Ethernet0.101
!
ip access-list extended MYNAT
permit ip 192.168.1.0 0.0.0.255 any
!
access-list 1 remark INSIDE_IF=Vlan1
access-list 1 remark CCP_ACL Category=2
access-list 1 permit 10.10.10.0 0.0.0.7
access-list 1 permit 192.168.1.0 0.0.0.255
access-list 10 remark ACL for main-terminal
access-list 10 permit 192.168.1.2
access-list 23 permit 10.10.10.0 0.0.0.7
dialer-list 1 protocol ip permit
mac-address-table aging-time 15
no cdp run
!
banner exec ^C
% Password expiration warning.
-----------------------------------------------------------------------
hidden to save space

^C
banner login ^C
-----------------------------------------------------------------------
Cisco Configuration Professional (Cisco CP) is installed on this device.
hidden to save space

-----------------------------------------------------------------------
^C
!
line con 0
password 7 12340A0411041B557A6A
login
no modem enable
line aux 0
line vty 0 4
access-class 23 in
privilege level 15
password 7 062B00324F411E485556
login
transport input telnet ssh
!
scheduler allocate 60000 1000
!
end

avasyura · ‎05-20-2020

Hi Georg,

Just would like to say thank you for your help and support. The connection with ISP is established successfully following your latest advise.

I now have another issue with the current config of router and WiFi access point but I'm creating another discussion for it.

Regards,

Anton