|
ru.cisco
- RU.CISCO ---------------------------------------------------------------------
From : Ilya Evseev 2:5020/400 17 Apr 2006 13:41:19
To : All
Subject : PPPoE работает, PPTP - нет.
--------------------------------------------------------------------------------
В продолжение темы - полный конфиг с работающим PPPOE :
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
service password-encryption
!
boot-start-marker
boot system disk2:c7200-js-mz.124-7.bin
boot-end-marker
!
logging count
logging buffered 16384 notifications
logging console warnings
!
aaa new-model
!
aaa authentication login default local
aaa authentication ppp default group radius
aaa authorization exec default local
aaa authorization network default group radius
aaa accounting delay-start
aaa accounting update newinfo
aaa accounting network default start-stop group radius
aaa accounting system default start-stop group radius
!
aaa session-id common
!
resource policy
!
clock timezone MSK 3
clock summer-time MSD recurring last Sun Mar 2:00 last Sun Oct 3:00
no ip source-route
no ip rcmd domain-lookup
!
ip cef
!
!
ip accounting-threshold 4294967295
vpdn enable
vpdn session-limit 1000
!
vpdn-group pptp
! Default PPTP VPDN group
description ==== PPTP clients ====
accept-dialin
protocol pptp
virtual-template 2
local name IC_pptp
ip precedence flash
!
virtual-template 1 pre-clone 100
virtual-template 2 pre-clone 100
!
class-map match-all channel128
match access-group 102
class-map match-all channel64
match access-group 101
!
policy-map CHANNELS
class channel64
police cir 64000 bc 12000 be 24000
class channel128
police cir 128000 bc 32000 be 64000
!
bba-group pppoe global
virtual-template 1
sessions max limit 9999
ac name IC_pppoe
sessions per-mac limit 1
!
interface Loopback0
description ====Loopback for PPP(-OE; -TP) ====
ip address 172.16.15.254 255.255.240.0
ip pim sparse-mode
ip route-cache policy
ip route-cache flow
!
interface GigabitEthernet0/1
description ==== Inet VLAN's ====
no ip address
duplex auto
speed auto
media-type rj45
no negotiation auto
no snmp trap link-status
random-detect
no cdp enable
hold-queue 1024 out
!
interface GigabitEthernet0/1
description ==== Inet VLAN's ====
no ip address
duplex auto
speed auto
media-type rj45
no negotiation auto
no snmp trap link-status
random-detect
no cdp enable
hold-queue 1024 out
!
interface GigabitEthernet0/1.1
description ==== VLAN Provider #1 id:10 ====
encapsulation dot1Q 10
ip address 217.xxx.xxx.90 255.255.255.252
no ip proxy-arp
ip nat outside
ip virtual-reassembly
no snmp trap link-status
no cdp enable
!
interface GigabitEthernet0/1.2
description ==== VLAN Provider #2 id:297 ====
encapsulation dot1Q 297
ip address 81.xxx.xxx.34 255.255.255.252
no ip proxy-arp
ip nat outside
ip virtual-reassembly
no snmp trap link-status
no cdp enable
!
interface GigabitEthernet0/2
description ==== Our Network ====
ip address 85.xxx.xxx.1 255.255.240.0 secondary
ip address 192.168.15.254 255.255.240.0
no ip redirects
no ip unreachables
no ip proxy-arp
ip nat inside
ip route-cache policy
ip route-cache flow
pppoe enable group global
random-detect
no cdp enable
!
interface GigabitEthernet0/3
description ==== DMZ ====
ip address 81.xxx.xxx.250 255.255.255.0 secondary
ip address 217.xxx.xxx.195 255.255.255.0
no ip proxy-arp
ip nat outside
ip virtual-reassembly
ip route-cache policy
ip route-cache flow
random-detect
no cdp enable
!
!
interface Virtual-Template1
description ==== Template for virtual interfaces for PPPOE ====
mtu 1460
ip unnumbered Loopback0
no ip proxy-arp
ip accounting output-packets
ip nat inside
ip virtual-reassembly
no logging event link-status
no peer default ip address
ppp authentication ms-chap-v2 ms-chap
service-policy output CHANNELS
!
interface Virtual-Template2
description ==== Template for virtual interfaces for PPTP ====
mtu 1480
ip unnumbered Loopback0
ip verify unicast reverse-path
no ip proxy-arp
ip nat inside
ip virtual-reassembly
no logging event link-status
autodetect encapsulation ppp
no peer default ip address
no keepalive
ppp authentication ms-chap-v2 chap
service-policy output CHANNELS
!
no ip http server
!
ip nat pool OZK_NAT 85.xxx.xxx.1 85.xxx.xxx.127 netmask 255.255.255.0
ip nat inside source list 10 pool OZK_NAT overload
!
logging history warnings
logging trap debugging
logging facility local4
access-list 10 permit 172.16.0.0 0.0.15.255
access-list 12 permit 192.168.0.0 0.0.15.255
access-list 101 permit ip any any
access-list 105 dynamic test1 permit ip any any
access-list 106 dynamic test2 permit ip any any
dialer-list 1 protocol ip permit
no cdp run
!
radius-server configure-nas
radius-server host 217.xxx.xxx.1 auth-port 1812 acct-port 1813
radius-server timeout 3
radius-server deadtime 1
radius-server unique-ident 22
radius-server key 7 xxx
!
control-plane
!
gatekeeper
shutdown
!
end
С уважением,
Илья Евсеев
--- ifmail v.2.15dev5.3
* Origin: FidoNet Online - http://www.fido-online.com (2:5020/400)
Вернуться к списку тем, сортированных по: возрастание даты уменьшение даты тема автор
| Тема: |
Автор: |
Дата: |
|
PPPoE работает, PPTP - нет. |
Ilya Evseev |
17 Apr 2006 13:41:19 |
|
|
