1、Cisco路由器连接ADSL modem的PPPoE配置: 说明:此案例为北京电信adsl PPPoE接入,需要使用一个普通adsl modem和一台cisco 2500路由器(双以太口),IOS 12.2(15)T,能够实现局域网共享上网.
此案例配置共分7步:
第一步:配置vpdn vpdn e
1、Cisco路由器连接ADSL modem的PPPoE配置:
说明:此案例为北京电信adsl PPPoE接入,需要使用一个普通adsl modem和一台cisco 2500路由器(双以太口),IOS 12.2(15)T,能够实现局域网共享上网.
此案例配置共分7步:
第一步:配置vpdn
vpdn enable(启用路由器的虚拟专用拨号网络---vpnd)
vpdn-group office(建立一个vpdn组,)
request-dialin(初始化一个vpnd tunnel,建立一个请求拨入的vpdn子组,)
protocol pppoe(vpdn子组使用pppoe建立会话隧道)
第二步: 配置路由器连接adsl modem的接口
interface Ethernet1
no ip address
pppoe enable允许以太接口运行pppoe
pppoe-client dial-pool-number 1将以太接口的pppoe拨号客户端加入拨号池1
第三步:配置逻辑拨号接口:
interface Dialer1
ip address negotiated从adsl服务商动态协商得到ip地址
ip nat outside为该接口启用NAT
encapsulation ppp为该接口封装ppp协议
dialer pool 1该接口使用1号拨号池进行拨号
dialer-group 1该命令对于pppoe是意义不大的
ppp authentication pap callin启用ppp pap验证
ppp pap sent-username xxxxxxx password 0 yyyyyyy使用已经申请的用户名和口令
第四步:配置内部网络接口
interface Ethernet0(内部网络接口)
ip address 10.1.1.1 255.255.255.0
ip nat inside为该接口启用NAT
第五步:配置路由器为内部网络主机提供dhcp服务
ip dhcp excluded-address 10.1.1.1
ip dhcp pool ABC
import all(导入dns和wins server)
network 10.1.1.0 255.255.255.0
default-router 10.1.1.1
第六步:配置NAT:
access-list 1 permit 10.1.1.0 0.0.0.255
cc
第七步:配置缺省路由
ip route 0.0.0.0 0.0.0.0 Dialer1
2、Cisco路由器连接ADSL WIC卡之PPPoE配置解:
!
vpdn enable
no vpdn logging <=由于ADSL的PPPoE应用是通过虚拟拨号来实现的所以在路由器中需要使用VPDN的功能
!
vpdn-group pppoe <=为PPPoE启动了VPDN的进程
request-dialin
protocol pppoe <=设置拨号协议为PPPoE
!
interface FastEthernet0 <=设置公司内部网络地址
ip address 192.168.0.1 255.255.255.0
ip nat inside <=为启用NAT转换,设置Fast ethernet端口为内部网络,从内部网络收到的数据的原地址转换为公网地址
!
interface ATM0/0 <=设置ADSL端口
no ip address <=请不要设置地址
no atm ilmi-keepalive
bundle-enable
dsl operating-mode auto
hold-queue 224 in
interface ATM0/0.1 point-to-point <=ADSL的通讯 依靠VC,所以必须设定点到点VC
pvc 8/81 <=设置PVC的相关参数, 即VCI和VPI的值,如果不清楚请向局端查询
pppoe-client dial-pool-number 1 <=PPPoE拨号进程使用了常规的拨号进程,这里引用了dialer-pool 1
!
interface Dialer1 <=建立一个虚拟拨号端口 ip address negotiated <=由于局端提供动态地址,所以必须设定地址为协商获得
ip mtu 1492 <=修改mtu值以适用于ADSL网络
ip nat outside <=为启用NAT转换,设置该端口为外部网络
encapsulation ppp <=使用PPP的帧格式
dialer pool 1
ppp authentication pap callin <=设置拨号的验证方式为pap
ppp pap sent vip pass vip <=发送用户名和密码
ip nat inside source list 1 interface Dialer1 overload <=设置了NAT的转换方式,使用了dialer 1端口的动态地址
!
ip classless
ip route 0.0.0.0 0.0.0.0 dialer1 <=将所有不可路由的数据报转发给ADSL线路,设定缺省路由
no ip http server
!
access-list 1 permit 192.168.0.0 0.0.0.255
-------------------------------------
Cisco路由器连接ADSL modem的PPPoE配置:
hostname bjsite
!
ip subnet-zero
no ip domain-lookup
!
vpdn enable
no vpdn logging
!
vpdn-group 1
request-dialin
protocol pppoe
!
interface Ethernet0/0
ip address 192.168.0.1 255.255.255.0
ip nat inside
no ip mroute-cache
!
!
!
!
interface Ethernet0/1
no ip address
pppoe enable
pppoe-client dial-pool-number 1
!
interface Dialer1
ip address negotiated
ip nat outside
ip mtu 1492
encapsulation ppp
no ip mroute-cache
dialer pool 1
dialer-group 1
ppp authentication pap
ppp pap sent-username dg48907653@163.gd password xxxxxxxx
!
ip classless
no ip http server
!
dialer-list 1 protocol ip permit
ip nat inside source list 1 interface Dialer1 overload
ip route 0.0.0.0 0.0.0.0 dialer1
access-list 1 permit 192.168.0.0 0.0.0.255
!
line con 0
exec-timeout 0 0
transport input none
line vty 0 4
login
!
end
Cisco路由器连接ADSL WIC卡之PPPoE配置:
vpdn-group pppoe
request-dialin
!--- we are the PPPoE client requesting to establish
!--- a session with the aggregation unit (6400 NRP).
protocol pppoe
!
!--- internal Ethernet network.
!
interface FastEthernet0
ip address 10.92.1.182 255.255.255.0
ip nat inside
!--- DSL interface.
!
interface ATM0
no ip address
no atm ilmi-keepalive
bundle-enable
dsl operating-mode auto
hold-queue 224 in
!--- All defaults.
!--- PPPoE runs on top of AAL5SNAP, but the
!--- encap aal5snap command is not used.
!
interface ATM0.1 point-to-point
pvc 1/1
pppoe-client dial-pool-number 1
!--- pvc 1/1 is an example value that must be changed
!--- to match the value used by the ISP.
!
!--- The PPPoE client code ties into a dialer interface upon
!--- which a virtual-access interface is cloned.
!
interface Dialer1
ip address negotiated
ip mtu 1492
!--- Ethernet MTU default = 1500 (1492 + PPPoE headers = 1500)
ip nat outside
encapsulation ppp
dialer pool 1
!--- Ties to atm interface.
ppp authentication chap callin
ppp chap hostname <username>
ppp chap password <password>
!
!--- The ISP will instruct you regarding
!--- the type of authentication to use.
!--- To change from PPP CHAP to PPP PAP,
!--- replace the following three lines:
!--- ppp authentication chap callin
!--- ppp chap hostname <username>
!--- ppp chap password <password>
!--- with the following two lines:
!--- ppp authentication pap callin
!--- ppp pap sent-username <username> password <password>
!--- For NAT we are going to overload on the Dialer1
!--- interface and add a default route out
!--- since dialer ip address can change.
ip nat inside source list 1 interface Dialer1 overload
ip classless
ip route 0.0.0.0 0.0.0.0 dialer1
no ip http server
!
access-list 1 permit 10.92.1.0 0.0.0.255
-------------------------------------------
用cisco路由器做PPPoE Server端配置
en
conf t
hostname Adsl_walkbird
username walkbird password walkbird
vpdn enable
vpdn-group pppoe
accept-dialin
protocol pppoe
virtual-template 1
exit
exit
interface ethernet 0/0
pppoe enable
no shutdown
interface virtual-template 1
mtu 1492 //PPP头部最大传输单元
ip unnumbered loopback //借用地址
peer default ip address pool pppoe_ip_pool
encapsulation ppp
ppp authentication pap
exit
ip local pool pppoe_ip_pool 11.11.11.10 11.11.11.100
interface lookback0
ip address 1.1.1.1 255.255.255.0
no shutdown
exit
三、实验测试
sh ip route
sh ip int brief
debug pppoe event
sh ip int dialer 1