Mailing List Archive

Rado,

you may want to go back to your LNS configuration, then add "vpdn
multihop" and put in your vpdn-group which initiates a tunnel (i.e. the
one you showed below). This should do what you want. The 7200 will
terminate the pppoe session, but once it receives the PPP authentication
request, "vpdn multihop" will trigger a search if the session is to be
forwarded or locally terminated. As the user domain matches, it will
forward it.

oli

________________________________

From: cisco-bba-bounces@puck.nether.net
[mailto:cisco-bba-bounces@puck.nether.net] On Behalf Of Rado Vasilev
Sent: Tuesday, March 04, 2008 1:20 PM
To: cisco-bba@puck.nether.net
Subject: [cisco-bba] Cisco as L2TP Access Concentrator (LAC)



Hi group,



I'm trying to configure a 7206VXR as a LAC (L2TP Access Concentrator)
without any success.

Here's my testlab setup - any view of what I might be doing wrong much
appreciated!







DSL modem configured with PPPoE and username rado@deckland.com is
connected to a Layer2 transparent DSLAM.

DSLAM port is mapped to vlan 5 which is terminated with a subinterface
on the 7206.



If I configure the router as LNS (vpdn group and virtual template
interface), the PPPoE session gets locally terminated

and I have connectivity to the modem. This basically proves the VLAN
connectivity from the DSLAM port to the Cisco router.

What my end goal is to use the device as LAC and not LNS. I have a
second router that's already configured as LNS and

this is where I want the PPP session terminated at.







[DSL modem] <-- dsl_line ---> [vlan_5 DSLAM dot1q_trunk] <--- uplink
---> [fa2/0.5 C7206VXR fa0/0] <--- IP ---> [LNS router]



Here's my configuration on the 7206:



------------------ 7206 conf -------------------



hostname lac



aaa new-model

aaa authentication login default local

aaa authentication ppp default local

aaa authorization network default local



vpdn enable

vpdn search-order domain dnis



vpdn-group 1

request-dialin

protocol l2tp

domain deckland.com

initiate-to ip 2.2.2.2

no l2tp tunnel authentication



! 2.2.2.2 is the IP of the remote LNS server



interface FastEthernet2/0.5

description PPPoE Test

encapsulation dot1Q 5

pppoe enable

pppoe max-sessions 100



--------------------------------------------------





The above configuration basically tries to manually establish L2TP
tunnel to the remote LNS.

Debbuging while the modem tries to connect shows in the logs:



*Mar 4 02:49:33.531: PPPoE 0: I PADI L:ffff.ffff.ffff R:0002.cf65.e602
5 Fa2/0.5

*Mar 4 02:49:33.531: PPPoE 0: No info L:ffff.ffff.ffff R:0002.cf65.e602
5 Fa2/0.5

*Mar 4 02:49:41.531: PPPoE 0: I PADI L:ffff.ffff.ffff R:0002.cf65.e602
5 Fa2/0.5

*Mar 4 02:49:41.531: PPPoE 0: No info L:ffff.ffff.ffff R:0002.cf65.e602
5 Fa2/0.5

*Mar 4 02:49:57.535: PPPoE 0: I PADI L:ffff.ffff.ffff R:0002.cf65.e602
5 Fa2/0.5

*Mar 4 02:49:57.535: PPPoE 0: No info L:ffff.ffff.ffff R:0002.cf65.e602
5 Fa2/0.5

*Mar 4 02:49:59.531: PPPoE 0: I PADI L:ffff.ffff.ffff R:0002.cf65.e602
5 Fa2/0.5



It looks that Cisco doesn't want to respond on the incoming PADI
messages...



sh version

Cisco Internetwork Operating System Software

IOS (tm) 7200 Software (C7200-JK9S-M), Version 12.2(46a), RELEASE
SOFTWARE (fc1)

Copyright (c) 1986-2007 by cisco Systems, Inc.

Compiled Thu 12-Jul-07 00:38 by pwade

Image text-base: 0x60008940, data-base: 0x617A4110



ROM: System Bootstrap, Version 12.0(19990210:195103) [12.0XE 105],
DEVELOPMENT SOFTWARE

BOOTLDR: 7200 Software (C7200-BOOT-M), Version 12.0(10)S, EARLY
DEPLOYMENT RELEASE SOFTWARE (fc1)



d-magneto-pe1 uptime is 18 hours, 45 minutes

System returned to ROM by reload at 08:04:11 UTC Mon Mar 3 2008

System image file is "slot1:c7200-jk9s-mz.122-46a.bin"







Any help appreciated!

Rado

Hi Oliver,

I added the global configuration command ``vpdn multihop’’ but that didn’t
help.
Did you mean to recommend some additional command(s) under the vpdn-group
too?


Current configuration:

------------------ 7206 conf -------------------

hostname lac

aaa new-model
aaa authentication login default local
aaa authentication ppp default local
aaa authorization network default local

vpdn enable
vpdn multihop
vpdn search-order domain dnis

vpdn-group 1
 request-dialin
  protocol l2tp
  domain deckland.com
 initiate-to ip 2.2.2.2
 no l2tp tunnel authentication

! 2.2.2.2 is the IP of the remote LNS server

interface FastEthernet2/0.5
 description PPPoE Test
 encapsulation dot1Q 5
 pppoe enable
 pppoe max-sessions 100

--------------------------------------------------

Log file still looks the same:
*Mar 4 04:17:33.582: PPPoE 0: I PADI L:ffff.ffff.ffff R:0002.cf65.e602 5
Fa2/0.5
*Mar 4 04:17:33.582: PPPoE 0: No info L:ffff.ffff.ffff R:0002.cf65.e602 5
Fa2/0.5
*Mar 4 04:17:41.582: PPPoE 0: I PADI L:ffff.ffff.ffff R:0002.cf65.e602 5
Fa2/0.5
*Mar 4 04:17:41.582: PPPoE 0: No info L:ffff.ffff.ffff R:0002.cf65.e602 5
Fa2/0.5
*Mar 4 04:17:57.586: PPPoE 0: I PADI L:ffff.ffff.ffff R:0002.cf65.e602 5
Fa2/0.5
*Mar 4 04:17:57.586: PPPoE 0: No info L:ffff.ffff.ffff R:0002.cf65.e602 5
Fa2/0.5
*Mar 4 04:17:59.582: PPPoE 0: I PADI L:ffff.ffff.ffff R:0002.cf65.e602 5
Fa2/0.5
*Mar 4 04:17:59.582: PPPoE 0: No info L:ffff.ffff.ffff R:0002.cf65.e602 5
Fa2/0.5



Regards,
Rado

________________________________________
From: Oliver Boehmer (oboehmer) [mailto:oboehmer@cisco.com]
Sent: 04 March 2008 12:36
To: Rado Vasilev; cisco-bba@puck.nether.net
Subject: RE: [cisco-bba] Cisco as L2TP Access Concentrator (LAC)

Rado,
 
you may want to go back to your LNS configuration, then add "vpdn multihop"
and put in your vpdn-group which initiates a tunnel (i.e. the one you showed
below). This should do what you want. The 7200 will terminate the pppoe
session, but once it receives the PPP authentication request, "vpdn
multihop" will trigger a search if the session is to be forwarded or locally
terminated. As the user domain matches, it will forward it.
 
    oli

________________________________________
From: cisco-bba-bounces@puck.nether.net
[mailto:cisco-bba-bounces@puck.nether.net] On Behalf Of Rado Vasilev
Sent: Tuesday, March 04, 2008 1:20 PM
To: cisco-bba@puck.nether.net
Subject: [cisco-bba] Cisco as L2TP Access Concentrator (LAC)
Hi group,

I'm trying to configure a 7206VXR as a LAC (L2TP Access Concentrator)
without any success.
Here's my testlab setup - any view of what I might be doing wrong much
appreciated!



DSL modem configured with PPPoE and username rado@deckland.com is connected
to a Layer2 transparent DSLAM.
DSLAM port is mapped to vlan 5 which is terminated with a subinterface on
the 7206.

If I configure the router as LNS (vpdn group and virtual template
interface), the PPPoE session gets locally terminated
and I have connectivity to the modem. This basically proves the VLAN
connectivity from the DSLAM port to the Cisco router.
What my end goal is to use the device as LAC and not LNS. I have a second
router that's already configured as LNS and
this is where I want the PPP session terminated at.



[DSL modem] <-- dsl_line ---> [vlan_5 DSLAM dot1q_trunk] <--- uplink --->
[fa2/0.5 C7206VXR fa0/0] <--- IP ---> [LNS router]

Here's my configuration on the 7206:

------------------ 7206 conf -------------------

hostname lac

aaa new-model
aaa authentication login default local
aaa authentication ppp default local
aaa authorization network default local

vpdn enable
vpdn search-order domain dnis

vpdn-group 1
 request-dialin
  protocol l2tp
  domain deckland.com
 initiate-to ip 2.2.2.2
 no l2tp tunnel authentication

! 2.2.2.2 is the IP of the remote LNS server

interface FastEthernet2/0.5
 description PPPoE Test
 encapsulation dot1Q 5
 pppoe enable
 pppoe max-sessions 100

--------------------------------------------------


The above configuration basically tries to manually establish L2TP tunnel to
the remote LNS.
Debbuging while the modem tries to connect shows in the logs:

*Mar  4 02:49:33.531: PPPoE 0: I PADI L:ffff.ffff.ffff R:0002.cf65.e602 5
Fa2/0.5
*Mar  4 02:49:33.531: PPPoE 0: No info L:ffff.ffff.ffff R:0002.cf65.e602 5
Fa2/0.5
*Mar  4 02:49:41.531: PPPoE 0: I PADI L:ffff.ffff.ffff R:0002.cf65.e602 5
Fa2/0.5
*Mar  4 02:49:41.531: PPPoE 0: No info L:ffff.ffff.ffff R:0002.cf65.e602 5
Fa2/0.5
*Mar  4 02:49:57.535: PPPoE 0: I PADI L:ffff.ffff.ffff R:0002.cf65.e602 5
Fa2/0.5
*Mar  4 02:49:57.535: PPPoE 0: No info L:ffff.ffff.ffff R:0002.cf65.e602 5
Fa2/0.5
*Mar  4 02:49:59.531: PPPoE 0: I PADI L:ffff.ffff.ffff R:0002.cf65.e602 5
Fa2/0.5

It looks that Cisco doesn't want to respond on the incoming PADI messages...

sh version
Cisco Internetwork Operating System Software
IOS (tm) 7200 Software (C7200-JK9S-M), Version 12.2(46a), RELEASE SOFTWARE
(fc1)
Copyright (c) 1986-2007 by cisco Systems, Inc.
Compiled Thu 12-Jul-07 00:38 by pwade
Image text-base: 0x60008940, data-base: 0x617A4110

ROM: System Bootstrap, Version 12.0(19990210:195103) [12.0XE 105],
DEVELOPMENT SOFTWARE
BOOTLDR: 7200 Software (C7200-BOOT-M), Version 12.0(10)S, EARLY DEPLOYMENT
RELEASE SOFTWARE (fc1)

d-magneto-pe1 uptime is 18 hours, 45 minutes
System returned to ROM by reload at 08:04:11 UTC Mon Mar 3 2008
System image file is "slot1:c7200-jk9s-mz.122-46a.bin"



Any help appreciated!
Rado

_______________________________________________
cisco-bba mailing list
cisco-bba@puck.nether.net
https://puck.nether.net/mailman/listinfo/cisco-bba

Rado Vasilev <mailto:rado@dev.magnet.ie> wrote on Tuesday, March 04,
2008 2:47 PM:

> Hi Oliver,
>
> I added the global configuration command ``vpdn multihop'' but that
> didn't help.
> Did you mean to recommend some additional command(s) under the
> vpdn-group too?

Well, I meant to configure a pppoe vpdn-group (or bba-group, depending
on version) and a virtual-template just as you did initially (you
mentioned that you successfully terminated the pppoe sessions on the
7200). This is required to accept pppoe sessions. The "vpdn multihop"
along with the addtl. vpdn-group will take care of L2TP forwarding.
So the 7200 will act as LNS as well as LAC (sometimes referred to as
"multihop LNS")..

you might want to consider upgrading to 12.3M or 12.4M to get addtl.
functionality for this type of application..

oli


_______________________________________________
cisco-bba mailing list
cisco-bba@puck.nether.net
https://puck.nether.net/mailman/listinfo/cisco-bba

Hi Oliver,

Thanks for your help - I got it working now!!!

--- Minimal Cisco LAC configuration ---

aaa new-model
aaa authentication login default local
aaa authentication ppp default local


vpdn enable
vpdn multihop
!
vpdn-group 1
accept-dialin
protocol pppoe
virtual-template 1
!

vpdn-group 2
request-dialin
protocol l2tp
domain deckland.com
initiate-to ip 2.2.2.2
local name deckland.com
no l2tp tunnel authentication
source-ip 1.1.1.1

interface FastEthernet2/0.5
description PPPoE Test
encapsulation dot1Q 5
pppoe enable
pppoe max-sessions 100


interface Virtual-Template1
description PPPoE Test
ip unnumbered Loopback1
keepalive 30
ppp authentication chap

----------------------------------------

lac#sh vpdn tunnel

L2TP Tunnel Information Total tunnels 1 sessions 1

LocID RemID Remote Name State Remote Address Port Sessions
21754 33850 d-test-lns1 est 2.2.2.2 1701 1

lac#sh users
Line User Host(s) Idle Location
* 2 vty 0 admin idle 00:00:00 3.3.3.3

Interface User Mode Idle Peer Address
Vi1 rado@deckl Virtual PPP (PPPoE ) 00:00:00

Regards,
Rado



-----Original Message-----
From: Oliver Boehmer (oboehmer) [mailto:oboehmer@cisco.com]
Sent: 04 March 2008 14:04
To: Rado Vasilev; cisco-bba@puck.nether.net
Subject: RE: [cisco-bba] Cisco as L2TP Access Concentrator (LAC)

Rado Vasilev <mailto:rado@dev.magnet.ie> wrote on Tuesday, March 04,
2008 2:47 PM:

> Hi Oliver,
>
> I added the global configuration command ``vpdn multihop'' but that
> didn't help.
> Did you mean to recommend some additional command(s) under the
> vpdn-group too?

Well, I meant to configure a pppoe vpdn-group (or bba-group, depending
on version) and a virtual-template just as you did initially (you
mentioned that you successfully terminated the pppoe sessions on the
7200). This is required to accept pppoe sessions. The "vpdn multihop"
along with the addtl. vpdn-group will take care of L2TP forwarding.
So the 7200 will act as LNS as well as LAC (sometimes referred to as
"multihop LNS")..

you might want to consider upgrading to 12.3M or 12.4M to get addtl.
functionality for this type of application..

oli



No virus found in this incoming message.
Checked by AVG Free Edition.
Version: 7.5.516 / Virus Database: 269.21.4/1309 - Release Date: 03/03/2008
18:50


_______________________________________________
cisco-bba mailing list
cisco-bba@puck.nether.net
https://puck.nether.net/mailman/listinfo/cisco-bba

Why does your LAC show the user as being connected via Virtual-
interface 1?

Ideally a LAC would not show any terminated users, only forwarded
sessions. In your case, it appears you have both.

In your virtual template, change "ip unnumbered Loopback1" to "no ip
address" and add "no peer default ip address".

On 05/03/2008, at 1:55 AM, Rado Vasilev wrote:

> Hi Oliver,
>
> Thanks for your help - I got it working now!!!
>
> --- Minimal Cisco LAC configuration ---
>
> aaa new-model
> aaa authentication login default local
> aaa authentication ppp default local
>
>
> vpdn enable
> vpdn multihop
> !
> vpdn-group 1
> accept-dialin
> protocol pppoe
> virtual-template 1
> !
>
> vpdn-group 2
> request-dialin
> protocol l2tp
> domain deckland.com
> initiate-to ip 2.2.2.2
> local name deckland.com
> no l2tp tunnel authentication
> source-ip 1.1.1.1
>
> interface FastEthernet2/0.5
> description PPPoE Test
> encapsulation dot1Q 5
> pppoe enable
> pppoe max-sessions 100
>
>
> interface Virtual-Template1
> description PPPoE Test
> ip unnumbered Loopback1
> keepalive 30
> ppp authentication chap
>
> ----------------------------------------
>
> lac#sh vpdn tunnel
>
> L2TP Tunnel Information Total tunnels 1 sessions 1
>
> LocID RemID Remote Name State Remote Address Port Sessions
> 21754 33850 d-test-lns1 est 2.2.2.2 1701 1
>
> lac#sh users
> Line User Host(s) Idle Location
> * 2 vty 0 admin idle 00:00:00 3.3.3.3
>
> Interface User Mode Idle Peer
> Address
> Vi1 rado@deckl Virtual PPP (PPPoE ) 00:00:00
>
> Regards,
> Rado
>
>
>
> -----Original Message-----
> From: Oliver Boehmer (oboehmer) [mailto:oboehmer@cisco.com]
> Sent: 04 March 2008 14:04
> To: Rado Vasilev; cisco-bba@puck.nether.net
> Subject: RE: [cisco-bba] Cisco as L2TP Access Concentrator (LAC)
>
> Rado Vasilev <mailto:rado@dev.magnet.ie> wrote on Tuesday, March 04,
> 2008 2:47 PM:
>
>> Hi Oliver,
>>
>> I added the global configuration command ``vpdn multihop'' but that
>> didn't help.
>> Did you mean to recommend some additional command(s) under the
>> vpdn-group too?
>
> Well, I meant to configure a pppoe vpdn-group (or bba-group, depending
> on version) and a virtual-template just as you did initially (you
> mentioned that you successfully terminated the pppoe sessions on the
> 7200). This is required to accept pppoe sessions. The "vpdn multihop"
> along with the addtl. vpdn-group will take care of L2TP forwarding.
> So the 7200 will act as LNS as well as LAC (sometimes referred to as
> "multihop LNS")..
>
> you might want to consider upgrading to 12.3M or 12.4M to get addtl.
> functionality for this type of application..
>
> oli
>
>
>
> No virus found in this incoming message.
> Checked by AVG Free Edition.
> Version: 7.5.516 / Virus Database: 269.21.4/1309 - Release Date:
> 03/03/2008
> 18:50
>
>
> _______________________________________________
> cisco-bba mailing list
> cisco-bba@puck.nether.net
> https://puck.nether.net/mailman/listinfo/cisco-bba

_______________________________________________
cisco-bba mailing list
cisco-bba@puck.nether.net
https://puck.nether.net/mailman/listinfo/cisco-bba

Tom,

I guess this is due to the IOS version deployed on the box. 12.2
mainline doesn't have the newer infrastructure as in 12.2SB/12.3/12.4.
As we don't start IPCP, IP address or pool information are ignored
anyway..

oli


Tom Storey <mailto:tom@snnap.net> wrote on Wednesday, March 05, 2008
9:25 AM:

> Why does your LAC show the user as being connected via Virtual-
> interface 1?
>
> Ideally a LAC would not show any terminated users, only forwarded
> sessions. In your case, it appears you have both.
>
> In your virtual template, change "ip unnumbered Loopback1" to "no ip
> address" and add "no peer default ip address".
>
> On 05/03/2008, at 1:55 AM, Rado Vasilev wrote:
>
>> Hi Oliver,
>>
>> Thanks for your help - I got it working now!!!
>>
>> --- Minimal Cisco LAC configuration ---
>>
>> aaa new-model
>> aaa authentication login default local
>> aaa authentication ppp default local
>>
>>
>> vpdn enable
>> vpdn multihop
>> !
>> vpdn-group 1
>> accept-dialin
>> protocol pppoe
>> virtual-template 1
>> !
>>
>> vpdn-group 2
>> request-dialin
>> protocol l2tp
>> domain deckland.com
>> initiate-to ip 2.2.2.2
>> local name deckland.com
>> no l2tp tunnel authentication
>> source-ip 1.1.1.1
>>
>> interface FastEthernet2/0.5
>> description PPPoE Test
>> encapsulation dot1Q 5
>> pppoe enable
>> pppoe max-sessions 100
>>
>>
>> interface Virtual-Template1
>> description PPPoE Test
>> ip unnumbered Loopback1
>> keepalive 30
>> ppp authentication chap
>>
>> ----------------------------------------
>>
>> lac#sh vpdn tunnel
>>
>> L2TP Tunnel Information Total tunnels 1 sessions 1
>>
>> LocID RemID Remote Name State Remote Address Port Sessions
>> 21754 33850 d-test-lns1 est 2.2.2.2 1701 1
>>
>> lac#sh users
>> Line User Host(s) Idle Location
>> * 2 vty 0 admin idle 00:00:00 3.3.3.3
>>
>> Interface User Mode Idle Peer
>> Address Vi1 rado@deckl Virtual PPP (PPPoE ) 00:00:00
>>
>> Regards,
>> Rado
>>
>>
>>
>> -----Original Message-----
>> From: Oliver Boehmer (oboehmer) [mailto:oboehmer@cisco.com]
>> Sent: 04 March 2008 14:04
>> To: Rado Vasilev; cisco-bba@puck.nether.net
>> Subject: RE: [cisco-bba] Cisco as L2TP Access Concentrator (LAC)
>>
>> Rado Vasilev <mailto:rado@dev.magnet.ie> wrote on Tuesday, March 04,
>> 2008 2:47 PM:
>>
>>> Hi Oliver,
>>>
>>> I added the global configuration command ``vpdn multihop'' but that
>>> didn't help. Did you mean to recommend some additional command(s)
>>> under the vpdn-group too?
>>
>> Well, I meant to configure a pppoe vpdn-group (or bba-group,
>> depending on version) and a virtual-template just as you did
>> initially (you mentioned that you successfully terminated the pppoe
>> sessions on the 7200). This is required to accept pppoe sessions.
>> The "vpdn multihop" along with the addtl. vpdn-group will take care
>> of L2TP forwarding. So the 7200 will act as LNS as well as LAC
>> (sometimes referred to as "multihop LNS")..
>>
>> you might want to consider upgrading to 12.3M or 12.4M to get addtl.
>> functionality for this type of application..
>>
>> oli
>>
>>
>>
>> No virus found in this incoming message.
>> Checked by AVG Free Edition.
>> Version: 7.5.516 / Virus Database: 269.21.4/1309 - Release Date:
>> 03/03/2008 18:50
>>
>>
>> _______________________________________________
>> cisco-bba mailing list
>> cisco-bba@puck.nether.net
>> https://puck.nether.net/mailman/listinfo/cisco-bba
_______________________________________________
cisco-bba mailing list
cisco-bba@puck.nether.net
https://puck.nether.net/mailman/listinfo/cisco-bba

Oliver,

You're right - I removed the two commands as Tom suggested but still have
the virtual template cloned... which brings me to the question which
IOS/feature set should I use for my future LACs? I will be using 7206 and
7301s that already need IP Plus and MPLS features in addition to the newer
BBA features.


Regards,
Rado


-----Original Message-----
From: Oliver Boehmer (oboehmer) [mailto:oboehmer@cisco.com]
Sent: 05 March 2008 08:36
To: Tom Storey; Rado Vasilev
Cc: cisco-bba@puck.nether.net
Subject: RE: [cisco-bba] Cisco as L2TP Access Concentrator (LAC)

Tom,

I guess this is due to the IOS version deployed on the box. 12.2
mainline doesn't have the newer infrastructure as in 12.2SB/12.3/12.4.
As we don't start IPCP, IP address or pool information are ignored
anyway..

oli


Tom Storey <mailto:tom@snnap.net> wrote on Wednesday, March 05, 2008
9:25 AM:

> Why does your LAC show the user as being connected via Virtual-
> interface 1?
>
> Ideally a LAC would not show any terminated users, only forwarded
> sessions. In your case, it appears you have both.
>
> In your virtual template, change "ip unnumbered Loopback1" to "no ip
> address" and add "no peer default ip address".
>
> On 05/03/2008, at 1:55 AM, Rado Vasilev wrote:
>
>> Hi Oliver,
>>
>> Thanks for your help - I got it working now!!!
>>
>> --- Minimal Cisco LAC configuration ---
>>
>> aaa new-model
>> aaa authentication login default local
>> aaa authentication ppp default local
>>
>>
>> vpdn enable
>> vpdn multihop
>> !
>> vpdn-group 1
>> accept-dialin
>> protocol pppoe
>> virtual-template 1
>> !
>>
>> vpdn-group 2
>> request-dialin
>> protocol l2tp
>> domain deckland.com
>> initiate-to ip 2.2.2.2
>> local name deckland.com
>> no l2tp tunnel authentication
>> source-ip 1.1.1.1
>>
>> interface FastEthernet2/0.5
>> description PPPoE Test
>> encapsulation dot1Q 5
>> pppoe enable
>> pppoe max-sessions 100
>>
>>
>> interface Virtual-Template1
>> description PPPoE Test
>> ip unnumbered Loopback1
>> keepalive 30
>> ppp authentication chap
>>
>> ----------------------------------------
>>
>> lac#sh vpdn tunnel
>>
>> L2TP Tunnel Information Total tunnels 1 sessions 1
>>
>> LocID RemID Remote Name State Remote Address Port Sessions
>> 21754 33850 d-test-lns1 est 2.2.2.2 1701 1
>>
>> lac#sh users
>> Line User Host(s) Idle Location
>> * 2 vty 0 admin idle 00:00:00 3.3.3.3
>>
>> Interface User Mode Idle Peer
>> Address Vi1 rado@deckl Virtual PPP (PPPoE ) 00:00:00
>>
>> Regards,
>> Rado
>>
>>
>>
>> -----Original Message-----
>> From: Oliver Boehmer (oboehmer) [mailto:oboehmer@cisco.com]
>> Sent: 04 March 2008 14:04
>> To: Rado Vasilev; cisco-bba@puck.nether.net
>> Subject: RE: [cisco-bba] Cisco as L2TP Access Concentrator (LAC)
>>
>> Rado Vasilev <mailto:rado@dev.magnet.ie> wrote on Tuesday, March 04,
>> 2008 2:47 PM:
>>
>>> Hi Oliver,
>>>
>>> I added the global configuration command ``vpdn multihop'' but that
>>> didn't help. Did you mean to recommend some additional command(s)
>>> under the vpdn-group too?
>>
>> Well, I meant to configure a pppoe vpdn-group (or bba-group,
>> depending on version) and a virtual-template just as you did
>> initially (you mentioned that you successfully terminated the pppoe
>> sessions on the 7200). This is required to accept pppoe sessions.
>> The "vpdn multihop" along with the addtl. vpdn-group will take care
>> of L2TP forwarding. So the 7200 will act as LNS as well as LAC
>> (sometimes referred to as "multihop LNS")..
>>
>> you might want to consider upgrading to 12.3M or 12.4M to get addtl.
>> functionality for this type of application..
>>
>> oli
>>
>>
>>
>> No virus found in this incoming message.
>> Checked by AVG Free Edition.
>> Version: 7.5.516 / Virus Database: 269.21.4/1309 - Release Date:
>> 03/03/2008 18:50
>>
>>
>> _______________________________________________
>> cisco-bba mailing list
>> cisco-bba@puck.nether.net
>> https://puck.nether.net/mailman/listinfo/cisco-bba

No virus found in this incoming message.
Checked by AVG Free Edition.
Version: 7.5.516 / Virus Database: 269.21.4/1312 - Release Date: 04/03/2008
21:46


_______________________________________________
cisco-bba mailing list
cisco-bba@puck.nether.net
https://puck.nether.net/mailman/listinfo/cisco-bba

Rado Vasilev <mailto:rado@dev.magnet.ie> wrote on Wednesday, March 05,
2008 9:44 AM:

> Oliver,
>
> You're right - I removed the two commands as Tom suggested but still
> have
> the virtual template cloned... which brings me to the question which
> IOS/feature set should I use for my future LACs? I will be using 7206
> and 7301s that already need IP Plus and MPLS features in addition to
> the newer BBA features.

use 12.3 or 12.4 mainline, same feature set..

oli
_______________________________________________
cisco-bba mailing list
cisco-bba@puck.nether.net
https://puck.nether.net/mailman/listinfo/cisco-bba

Did you happen to clear the existing session off, and let it re-
establish?

Didnt see you mention that. :-)

Cheers,
Tom

On 05/03/2008, at 7:14 PM, Rado Vasilev wrote:

> Oliver,
>
> You're right - I removed the two commands as Tom suggested but still
> have
> the virtual template cloned... which brings me to the question which
> IOS/feature set should I use for my future LACs? I will be using
> 7206 and
> 7301s that already need IP Plus and MPLS features in addition to the
> newer
> BBA features.
>
>
> Regards,
> Rado
>
>
> -----Original Message-----
> From: Oliver Boehmer (oboehmer) [mailto:oboehmer@cisco.com]
> Sent: 05 March 2008 08:36
> To: Tom Storey; Rado Vasilev
> Cc: cisco-bba@puck.nether.net
> Subject: RE: [cisco-bba] Cisco as L2TP Access Concentrator (LAC)
>
> Tom,
>
> I guess this is due to the IOS version deployed on the box. 12.2
> mainline doesn't have the newer infrastructure as in 12.2SB/12.3/12.4.
> As we don't start IPCP, IP address or pool information are ignored
> anyway..
>
> oli
>
>
> Tom Storey <mailto:tom@snnap.net> wrote on Wednesday, March 05, 2008
> 9:25 AM:
>
>> Why does your LAC show the user as being connected via Virtual-
>> interface 1?
>>
>> Ideally a LAC would not show any terminated users, only forwarded
>> sessions. In your case, it appears you have both.
>>
>> In your virtual template, change "ip unnumbered Loopback1" to "no ip
>> address" and add "no peer default ip address".
>>
>> On 05/03/2008, at 1:55 AM, Rado Vasilev wrote:
>>
>>> Hi Oliver,
>>>
>>> Thanks for your help - I got it working now!!!
>>>
>>> --- Minimal Cisco LAC configuration ---
>>>
>>> aaa new-model
>>> aaa authentication login default local
>>> aaa authentication ppp default local
>>>
>>>
>>> vpdn enable
>>> vpdn multihop
>>> !
>>> vpdn-group 1
>>> accept-dialin
>>> protocol pppoe
>>> virtual-template 1
>>> !
>>>
>>> vpdn-group 2
>>> request-dialin
>>> protocol l2tp
>>> domain deckland.com
>>> initiate-to ip 2.2.2.2
>>> local name deckland.com
>>> no l2tp tunnel authentication
>>> source-ip 1.1.1.1
>>>
>>> interface FastEthernet2/0.5
>>> description PPPoE Test
>>> encapsulation dot1Q 5
>>> pppoe enable
>>> pppoe max-sessions 100
>>>
>>>
>>> interface Virtual-Template1
>>> description PPPoE Test
>>> ip unnumbered Loopback1
>>> keepalive 30
>>> ppp authentication chap
>>>
>>> ----------------------------------------
>>>
>>> lac#sh vpdn tunnel
>>>
>>> L2TP Tunnel Information Total tunnels 1 sessions 1
>>>
>>> LocID RemID Remote Name State Remote Address Port Sessions
>>> 21754 33850 d-test-lns1 est 2.2.2.2 1701 1
>>>
>>> lac#sh users
>>> Line User Host(s) Idle Location
>>> * 2 vty 0 admin idle 00:00:00 3.3.3.3
>>>
>>> Interface User Mode Idle Peer
>>> Address Vi1 rado@deckl Virtual PPP (PPPoE ) 00:00:00
>>>
>>> Regards,
>>> Rado
>>>
>>>
>>>
>>> -----Original Message-----
>>> From: Oliver Boehmer (oboehmer) [mailto:oboehmer@cisco.com]
>>> Sent: 04 March 2008 14:04
>>> To: Rado Vasilev; cisco-bba@puck.nether.net
>>> Subject: RE: [cisco-bba] Cisco as L2TP Access Concentrator (LAC)
>>>
>>> Rado Vasilev <mailto:rado@dev.magnet.ie> wrote on Tuesday, March 04,
>>> 2008 2:47 PM:
>>>
>>>> Hi Oliver,
>>>>
>>>> I added the global configuration command ``vpdn multihop'' but that
>>>> didn't help. Did you mean to recommend some additional command(s)
>>>> under the vpdn-group too?
>>>
>>> Well, I meant to configure a pppoe vpdn-group (or bba-group,
>>> depending on version) and a virtual-template just as you did
>>> initially (you mentioned that you successfully terminated the pppoe
>>> sessions on the 7200). This is required to accept pppoe sessions.
>>> The "vpdn multihop" along with the addtl. vpdn-group will take care
>>> of L2TP forwarding. So the 7200 will act as LNS as well as LAC
>>> (sometimes referred to as "multihop LNS")..
>>>
>>> you might want to consider upgrading to 12.3M or 12.4M to get addtl.
>>> functionality for this type of application..
>>>
>>> oli
>>>
>>>
>>>
>>> No virus found in this incoming message.
>>> Checked by AVG Free Edition.
>>> Version: 7.5.516 / Virus Database: 269.21.4/1309 - Release Date:
>>> 03/03/2008 18:50
>>>
>>>
>>> _______________________________________________
>>> cisco-bba mailing list
>>> cisco-bba@puck.nether.net
>>> https://puck.nether.net/mailman/listinfo/cisco-bba
>
> No virus found in this incoming message.
> Checked by AVG Free Edition.
> Version: 7.5.516 / Virus Database: 269.21.4/1312 - Release Date:
> 04/03/2008
> 21:46
>
>

_______________________________________________
cisco-bba mailing list
cisco-bba@puck.nether.net
https://puck.nether.net/mailman/listinfo/cisco-bba

Hi Oli,

Funny you should mention that. Ive never seen a session show up as
"terminated" on a LAC, even on older 12.2 IOSes.

Im thinking that by (un)numbering his virtual-template the router is
somewhat "terminating" the session, but also forwarding it on.

Could be wrong though. :-)

Cheers,
Tom

On 05/03/2008, at 7:06 PM, Oliver Boehmer (oboehmer) wrote:

> Tom,
>
> I guess this is due to the IOS version deployed on the box. 12.2
> mainline doesn't have the newer infrastructure as in 12.2SB/12.3/12.4.
> As we don't start IPCP, IP address or pool information are ignored
> anyway..
>
> oli
>
>
> Tom Storey <mailto:tom@snnap.net> wrote on Wednesday, March 05, 2008
> 9:25 AM:
>
>> Why does your LAC show the user as being connected via Virtual-
>> interface 1?
>>
>> Ideally a LAC would not show any terminated users, only forwarded
>> sessions. In your case, it appears you have both.
>>
>> In your virtual template, change "ip unnumbered Loopback1" to "no ip
>> address" and add "no peer default ip address".
>>
>> On 05/03/2008, at 1:55 AM, Rado Vasilev wrote:
>>
>>> Hi Oliver,
>>>
>>> Thanks for your help - I got it working now!!!
>>>
>>> --- Minimal Cisco LAC configuration ---
>>>
>>> aaa new-model
>>> aaa authentication login default local
>>> aaa authentication ppp default local
>>>
>>>
>>> vpdn enable
>>> vpdn multihop
>>> !
>>> vpdn-group 1
>>> accept-dialin
>>> protocol pppoe
>>> virtual-template 1
>>> !
>>>
>>> vpdn-group 2
>>> request-dialin
>>> protocol l2tp
>>> domain deckland.com
>>> initiate-to ip 2.2.2.2
>>> local name deckland.com
>>> no l2tp tunnel authentication
>>> source-ip 1.1.1.1
>>>
>>> interface FastEthernet2/0.5
>>> description PPPoE Test
>>> encapsulation dot1Q 5
>>> pppoe enable
>>> pppoe max-sessions 100
>>>
>>>
>>> interface Virtual-Template1
>>> description PPPoE Test
>>> ip unnumbered Loopback1
>>> keepalive 30
>>> ppp authentication chap
>>>
>>> ----------------------------------------
>>>
>>> lac#sh vpdn tunnel
>>>
>>> L2TP Tunnel Information Total tunnels 1 sessions 1
>>>
>>> LocID RemID Remote Name State Remote Address Port Sessions
>>> 21754 33850 d-test-lns1 est 2.2.2.2 1701 1
>>>
>>> lac#sh users
>>> Line User Host(s) Idle Location
>>> * 2 vty 0 admin idle 00:00:00 3.3.3.3
>>>
>>> Interface User Mode Idle Peer
>>> Address Vi1 rado@deckl Virtual PPP (PPPoE ) 00:00:00
>>>
>>> Regards,
>>> Rado
>>>
>>>
>>>
>>> -----Original Message-----
>>> From: Oliver Boehmer (oboehmer) [mailto:oboehmer@cisco.com]
>>> Sent: 04 March 2008 14:04
>>> To: Rado Vasilev; cisco-bba@puck.nether.net
>>> Subject: RE: [cisco-bba] Cisco as L2TP Access Concentrator (LAC)
>>>
>>> Rado Vasilev <mailto:rado@dev.magnet.ie> wrote on Tuesday, March 04,
>>> 2008 2:47 PM:
>>>
>>>> Hi Oliver,
>>>>
>>>> I added the global configuration command ``vpdn multihop'' but that
>>>> didn't help. Did you mean to recommend some additional command(s)
>>>> under the vpdn-group too?
>>>
>>> Well, I meant to configure a pppoe vpdn-group (or bba-group,
>>> depending on version) and a virtual-template just as you did
>>> initially (you mentioned that you successfully terminated the pppoe
>>> sessions on the 7200). This is required to accept pppoe sessions.
>>> The "vpdn multihop" along with the addtl. vpdn-group will take care
>>> of L2TP forwarding. So the 7200 will act as LNS as well as LAC
>>> (sometimes referred to as "multihop LNS")..
>>>
>>> you might want to consider upgrading to 12.3M or 12.4M to get addtl.
>>> functionality for this type of application..
>>>
>>> oli
>>>
>>>
>>>
>>> No virus found in this incoming message.
>>> Checked by AVG Free Edition.
>>> Version: 7.5.516 / Virus Database: 269.21.4/1309 - Release Date:
>>> 03/03/2008 18:50
>>>
>>>
>>> _______________________________________________
>>> cisco-bba mailing list
>>> cisco-bba@puck.nether.net
>>> https://puck.nether.net/mailman/listinfo/cisco-bba

_______________________________________________
cisco-bba mailing list
cisco-bba@puck.nether.net
https://puck.nether.net/mailman/listinfo/cisco-bba

I did - it appeared again:

lac#sh users
Line User Host(s) Idle Location
* 2 vty 0 admin idle 00:00:00 4.4.4.4

Interface User Mode Idle Peer Address
Vi1 rado@deckl Virtual PPP (PPPoE ) 00:00:07

lac#clear int vi1

lac#sh users
Line User Host(s) Idle Location
* 2 vty 0 admin idle 00:00:00 4.4.4.4

Interface User Mode Idle Peer Address
Vi2 rado@deckl Virtual PPP (PPPoE ) 00:00:00


Rado

-----Original Message-----
From: Tom Storey [mailto:tom@snnap.net]
Sent: 05 March 2008 09:00
To: Rado Vasilev
Cc: 'Oliver Boehmer (oboehmer)'; cisco-bba@puck.nether.net
Subject: Re: [cisco-bba] Cisco as L2TP Access Concentrator (LAC)

Did you happen to clear the existing session off, and let it re-
establish?

Didnt see you mention that. :-)

Cheers,
Tom

On 05/03/2008, at 7:14 PM, Rado Vasilev wrote:

> Oliver,
>
> You're right - I removed the two commands as Tom suggested but still
> have
> the virtual template cloned... which brings me to the question which
> IOS/feature set should I use for my future LACs? I will be using
> 7206 and
> 7301s that already need IP Plus and MPLS features in addition to the
> newer
> BBA features.
>
>
> Regards,
> Rado
>
>
> -----Original Message-----
> From: Oliver Boehmer (oboehmer) [mailto:oboehmer@cisco.com]
> Sent: 05 March 2008 08:36
> To: Tom Storey; Rado Vasilev
> Cc: cisco-bba@puck.nether.net
> Subject: RE: [cisco-bba] Cisco as L2TP Access Concentrator (LAC)
>
> Tom,
>
> I guess this is due to the IOS version deployed on the box. 12.2
> mainline doesn't have the newer infrastructure as in 12.2SB/12.3/12.4.
> As we don't start IPCP, IP address or pool information are ignored
> anyway..
>
> oli
>
>
> Tom Storey <mailto:tom@snnap.net> wrote on Wednesday, March 05, 2008
> 9:25 AM:
>
>> Why does your LAC show the user as being connected via Virtual-
>> interface 1?
>>
>> Ideally a LAC would not show any terminated users, only forwarded
>> sessions. In your case, it appears you have both.
>>
>> In your virtual template, change "ip unnumbered Loopback1" to "no ip
>> address" and add "no peer default ip address".
>>
>> On 05/03/2008, at 1:55 AM, Rado Vasilev wrote:
>>
>>> Hi Oliver,
>>>
>>> Thanks for your help - I got it working now!!!
>>>
>>> --- Minimal Cisco LAC configuration ---
>>>
>>> aaa new-model
>>> aaa authentication login default local
>>> aaa authentication ppp default local
>>>
>>>
>>> vpdn enable
>>> vpdn multihop
>>> !
>>> vpdn-group 1
>>> accept-dialin
>>> protocol pppoe
>>> virtual-template 1
>>> !
>>>
>>> vpdn-group 2
>>> request-dialin
>>> protocol l2tp
>>> domain deckland.com
>>> initiate-to ip 2.2.2.2
>>> local name deckland.com
>>> no l2tp tunnel authentication
>>> source-ip 1.1.1.1
>>>
>>> interface FastEthernet2/0.5
>>> description PPPoE Test
>>> encapsulation dot1Q 5
>>> pppoe enable
>>> pppoe max-sessions 100
>>>
>>>
>>> interface Virtual-Template1
>>> description PPPoE Test
>>> ip unnumbered Loopback1
>>> keepalive 30
>>> ppp authentication chap
>>>
>>> ----------------------------------------
>>>
>>> lac#sh vpdn tunnel
>>>
>>> L2TP Tunnel Information Total tunnels 1 sessions 1
>>>
>>> LocID RemID Remote Name State Remote Address Port Sessions
>>> 21754 33850 d-test-lns1 est 2.2.2.2 1701 1
>>>
>>> lac#sh users
>>> Line User Host(s) Idle Location
>>> * 2 vty 0 admin idle 00:00:00 3.3.3.3
>>>
>>> Interface User Mode Idle Peer
>>> Address Vi1 rado@deckl Virtual PPP (PPPoE ) 00:00:00
>>>
>>> Regards,
>>> Rado
>>>
>>>
>>>
>>> -----Original Message-----
>>> From: Oliver Boehmer (oboehmer) [mailto:oboehmer@cisco.com]
>>> Sent: 04 March 2008 14:04
>>> To: Rado Vasilev; cisco-bba@puck.nether.net
>>> Subject: RE: [cisco-bba] Cisco as L2TP Access Concentrator (LAC)
>>>
>>> Rado Vasilev <mailto:rado@dev.magnet.ie> wrote on Tuesday, March 04,
>>> 2008 2:47 PM:
>>>
>>>> Hi Oliver,
>>>>
>>>> I added the global configuration command ``vpdn multihop'' but that
>>>> didn't help. Did you mean to recommend some additional command(s)
>>>> under the vpdn-group too?
>>>
>>> Well, I meant to configure a pppoe vpdn-group (or bba-group,
>>> depending on version) and a virtual-template just as you did
>>> initially (you mentioned that you successfully terminated the pppoe
>>> sessions on the 7200). This is required to accept pppoe sessions.
>>> The "vpdn multihop" along with the addtl. vpdn-group will take care
>>> of L2TP forwarding. So the 7200 will act as LNS as well as LAC
>>> (sometimes referred to as "multihop LNS")..
>>>
>>> you might want to consider upgrading to 12.3M or 12.4M to get addtl.
>>> functionality for this type of application..
>>>
>>> oli
>>>
>>>
>>>
>>> No virus found in this incoming message.
>>> Checked by AVG Free Edition.
>>> Version: 7.5.516 / Virus Database: 269.21.4/1309 - Release Date:
>>> 03/03/2008 18:50
>>>
>>>
>>> _______________________________________________
>>> cisco-bba mailing list
>>> cisco-bba@puck.nether.net
>>> https://puck.nether.net/mailman/listinfo/cisco-bba
>
> No virus found in this incoming message.
> Checked by AVG Free Edition.
> Version: 7.5.516 / Virus Database: 269.21.4/1312 - Release Date:
> 04/03/2008
> 21:46
>
>


No virus found in this incoming message.
Checked by AVG Free Edition.
Version: 7.5.516 / Virus Database: 269.21.4/1312 - Release Date: 04/03/2008
21:46


_______________________________________________
cisco-bba mailing list
cisco-bba@puck.nether.net
https://puck.nether.net/mailman/listinfo/cisco-bba

Interesting. As I said to Oli, I have never seen this in my
experience, even with older 12.2 IOS versions, though that was on 2600
series, not 7200 series as you are using.

Cheers,
Tom

On 05/03/2008, at 7:42 PM, Rado Vasilev wrote:

> I did - it appeared again:
>
> lac#sh users
> Line User Host(s) Idle Location
> * 2 vty 0 admin idle 00:00:00 4.4.4.4
>
> Interface User Mode Idle Peer
> Address
> Vi1 rado@deckl Virtual PPP (PPPoE ) 00:00:07
>
> lac#clear int vi1
>
> lac#sh users
> Line User Host(s) Idle Location
> * 2 vty 0 admin idle 00:00:00 4.4.4.4
>
> Interface User Mode Idle Peer
> Address
> Vi2 rado@deckl Virtual PPP (PPPoE ) 00:00:00
>
>
> Rado
>
> -----Original Message-----
> From: Tom Storey [mailto:tom@snnap.net]
> Sent: 05 March 2008 09:00
> To: Rado Vasilev
> Cc: 'Oliver Boehmer (oboehmer)'; cisco-bba@puck.nether.net
> Subject: Re: [cisco-bba] Cisco as L2TP Access Concentrator (LAC)
>
> Did you happen to clear the existing session off, and let it re-
> establish?
>
> Didnt see you mention that. :-)
>
> Cheers,
> Tom
>
> On 05/03/2008, at 7:14 PM, Rado Vasilev wrote:
>
>> Oliver,
>>
>> You're right - I removed the two commands as Tom suggested but still
>> have
>> the virtual template cloned... which brings me to the question which
>> IOS/feature set should I use for my future LACs? I will be using
>> 7206 and
>> 7301s that already need IP Plus and MPLS features in addition to the
>> newer
>> BBA features.
>>
>>
>> Regards,
>> Rado
>>
>>
>> -----Original Message-----
>> From: Oliver Boehmer (oboehmer) [mailto:oboehmer@cisco.com]
>> Sent: 05 March 2008 08:36
>> To: Tom Storey; Rado Vasilev
>> Cc: cisco-bba@puck.nether.net
>> Subject: RE: [cisco-bba] Cisco as L2TP Access Concentrator (LAC)
>>
>> Tom,
>>
>> I guess this is due to the IOS version deployed on the box. 12.2
>> mainline doesn't have the newer infrastructure as in 12.2SB/
>> 12.3/12.4.
>> As we don't start IPCP, IP address or pool information are ignored
>> anyway..
>>
>> oli
>>
>>
>> Tom Storey <mailto:tom@snnap.net> wrote on Wednesday, March 05, 2008
>> 9:25 AM:
>>
>>> Why does your LAC show the user as being connected via Virtual-
>>> interface 1?
>>>
>>> Ideally a LAC would not show any terminated users, only forwarded
>>> sessions. In your case, it appears you have both.
>>>
>>> In your virtual template, change "ip unnumbered Loopback1" to "no ip
>>> address" and add "no peer default ip address".
>>>
>>> On 05/03/2008, at 1:55 AM, Rado Vasilev wrote:
>>>
>>>> Hi Oliver,
>>>>
>>>> Thanks for your help - I got it working now!!!
>>>>
>>>> --- Minimal Cisco LAC configuration ---
>>>>
>>>> aaa new-model
>>>> aaa authentication login default local
>>>> aaa authentication ppp default local
>>>>
>>>>
>>>> vpdn enable
>>>> vpdn multihop
>>>> !
>>>> vpdn-group 1
>>>> accept-dialin
>>>> protocol pppoe
>>>> virtual-template 1
>>>> !
>>>>
>>>> vpdn-group 2
>>>> request-dialin
>>>> protocol l2tp
>>>> domain deckland.com
>>>> initiate-to ip 2.2.2.2
>>>> local name deckland.com
>>>> no l2tp tunnel authentication
>>>> source-ip 1.1.1.1
>>>>
>>>> interface FastEthernet2/0.5
>>>> description PPPoE Test
>>>> encapsulation dot1Q 5
>>>> pppoe enable
>>>> pppoe max-sessions 100
>>>>
>>>>
>>>> interface Virtual-Template1
>>>> description PPPoE Test
>>>> ip unnumbered Loopback1
>>>> keepalive 30
>>>> ppp authentication chap
>>>>
>>>> ----------------------------------------
>>>>
>>>> lac#sh vpdn tunnel
>>>>
>>>> L2TP Tunnel Information Total tunnels 1 sessions 1
>>>>
>>>> LocID RemID Remote Name State Remote Address Port Sessions
>>>> 21754 33850 d-test-lns1 est 2.2.2.2 1701 1
>>>>
>>>> lac#sh users
>>>> Line User Host(s) Idle Location
>>>> * 2 vty 0 admin idle 00:00:00 3.3.3.3
>>>>
>>>> Interface User Mode Idle Peer
>>>> Address Vi1 rado@deckl Virtual PPP (PPPoE ) 00:00:00
>>>>
>>>> Regards,
>>>> Rado
>>>>
>>>>
>>>>
>>>> -----Original Message-----
>>>> From: Oliver Boehmer (oboehmer) [mailto:oboehmer@cisco.com]
>>>> Sent: 04 March 2008 14:04
>>>> To: Rado Vasilev; cisco-bba@puck.nether.net
>>>> Subject: RE: [cisco-bba] Cisco as L2TP Access Concentrator (LAC)
>>>>
>>>> Rado Vasilev <mailto:rado@dev.magnet.ie> wrote on Tuesday, March
>>>> 04,
>>>> 2008 2:47 PM:
>>>>
>>>>> Hi Oliver,
>>>>>
>>>>> I added the global configuration command ``vpdn multihop'' but
>>>>> that
>>>>> didn't help. Did you mean to recommend some additional command(s)
>>>>> under the vpdn-group too?
>>>>
>>>> Well, I meant to configure a pppoe vpdn-group (or bba-group,
>>>> depending on version) and a virtual-template just as you did
>>>> initially (you mentioned that you successfully terminated the pppoe
>>>> sessions on the 7200). This is required to accept pppoe sessions.
>>>> The "vpdn multihop" along with the addtl. vpdn-group will take care
>>>> of L2TP forwarding. So the 7200 will act as LNS as well as LAC
>>>> (sometimes referred to as "multihop LNS")..
>>>>
>>>> you might want to consider upgrading to 12.3M or 12.4M to get
>>>> addtl.
>>>> functionality for this type of application..
>>>>
>>>> oli
>>>>
>>>>
>>>>
>>>> No virus found in this incoming message.
>>>> Checked by AVG Free Edition.
>>>> Version: 7.5.516 / Virus Database: 269.21.4/1309 - Release Date:
>>>> 03/03/2008 18:50
>>>>
>>>>
>>>> _______________________________________________
>>>> cisco-bba mailing list
>>>> cisco-bba@puck.nether.net
>>>> https://puck.nether.net/mailman/listinfo/cisco-bba
>>
>> No virus found in this incoming message.
>> Checked by AVG Free Edition.
>> Version: 7.5.516 / Virus Database: 269.21.4/1312 - Release Date:
>> 04/03/2008
>> 21:46
>>
>>
>
>
> No virus found in this incoming message.
> Checked by AVG Free Edition.
> Version: 7.5.516 / Virus Database: 269.21.4/1312 - Release Date:
> 04/03/2008
> 21:46
>
>

_______________________________________________
cisco-bba mailing list
cisco-bba@puck.nether.net
https://puck.nether.net/mailman/listinfo/cisco-bba