• Aucun résultat trouvé

P OINT - TO -P OINT P ROTOCOL

N/A
N/A
Info
Télécharger
Protected

Academic year: 2022

Partager "P OINT - TO -P OINT P ROTOCOL"

Copied!
1
0
0

Chargement.... (Voir le texte intégral maintenant)

Texte intégral

(1)

packetlife.net

by Jeremy Stretch v1.2

P OINT - TO -P OINT P ROTOCOL

LCP Header

Code Identifier Length

8 16 24 32

General PPP Configuration

! Configure a peer account if authentication will be used username peer-hostname password password

! Configure a local IP address pool if needed ip pool name first-IP last-IP

interface Serial0/0

! Enable PPP encapsulation encapsulation ppp

! Enable CHAP and/or PAP for authentication ppp authentication { chap | pap } [ chap | pap ]

! Enable compression

compress { predictor | stac }

! Enable peer IP address assignment (server side) peer default ip address { pool name | IP-address }

! Enable IP address negotiation (client side) ip address negotiated

Troubleshooting

show ppp multilink

debug ppp authentication PPP Components

Link Control Protocol (LCP)

Provides for the establishment, configuration, and maintenance of a PPP link. Protocol-independent options are negotiated by LCP.

Network Control Protocol (NCP)

A separate NCP is used to negotiate the configuration of each network layer protocol (such as IP) carried by PPP.

debug ppp { negotiation | packet } PPP Header

Address Control Protocol

8 16 24 32

Connection Phase Flowchart

Dead Establish

Authenticate

Network Terminate

Auth Required No Auth

Success Failure

Admin Shutdown Authentication Protocols

Plaintext Authentication Protocol (PAP)

Original, obsolete authentication protocol which relies on the exchange of a plaintext key to authenticate peers (RFC 1334).

Challenge Handshake Authentication Protocol (CHAP) Authenticates peers using the MD5 checksum of a pre-shared secret key (RFC 1994).

PPP Features

Protocol Multiplexing· Multiple NCPs

Optional Compression · Stacker/predictor Loopback Detection· Provided by LCP Load Balancing· Multilink PPP

Optional Authentication· PAP/CHAP

Multilink PPP Configuration

! Create the multilink interface interface Multilink1

ip address IP-address subnet-mask ppp multilink group group

! Assign physical interfaces to the multilink group interface Serial0/0

encapsulation ppp

ppp multilink group group

PPP Summary

Standard RFC 1661

Asynchronous serial, synchronous serial, ISDN, HSSI

Interfaces

PPP Compression Algorithms Stacker

Replaces repetitive data with symbols from a dynamic dictionary (more processor-intensive) Predictor

Attempts to predict sequential data (more memory-intensive)

PPP Connection Example

LCP Configuration Request LCP Configuration Ack

CHAP Challenge CHAP Response CHAP Success

IP Control Configuration Request IP Control Configuration Ack CDP Control Configuration Request

CDP Control Configuration Ack Extensible Authentication Protocol (EAP)

Provides MD5-based authentication similar to CHAP (RFC 3748).

Could be expanded to support other EAP mechanisms as well.

Références

Télécharger maintenant ( PDF - 1 Page - 61.61 KB )

Documents relatifs

Cisco IOS IP Command Reference, Volume 1 of 4: Addressing and Services

To specify the number of packets a Cisco IOS Dynamic Host Configuration Protocol (DHCP) server sends to a pool address as part of a ping operation, use the ip dhcp ping packets

2 1.2 Primary NBNS Server Address

If local peer requests an invalid server address (which it will typically do intentionally) the remote peer specifies the address by NAKing this option, and

Please refer to the current edition of the "Internet Official Protocol Standards&#34

The UDP relay server MUST acquire from the SOCKS server the expected IP address of the client that will send datagrams to the BND.PORT given in the reply to UDP ASSOCIATE. It

Please refer to the current edition of the "Internet Official Protocol Standards&#34

To enable in-band security negotiation, the NFS version 4 protocol has added a new operation which provides the client a method of querying the server about its policies

Please refer to the current edition of the "Internet Official Protocol Standards&#34

If the client has not completed a successful request/response transaction with the server (as identified by hostname, if the DNS procedures of Section 9 are used, else IP

This document describes the TSP within the model of the tunnel broker model

* IPv6 over UDP-IPv4 tunnels for NAT traversal o IP address assignment for the tunnel endpoints o DNS registration of the IP endpoint address (AAAA) Other tunnel

It represents the consensus of the IETF community

The Client Cookie, when it occurs in a COOKIE option in a DNS reply, is intended to weakly assure the client that the reply came from a server at the source IP address used in

It represents the consensus of the IETF community

When a server consumes this option, it will either forward the URL and relevant client information (such as the gateway address or giaddr and requested IP address, and lease