1 / 25

Objectives

Objectives. Upon completion of this chapter, you will be able to perform the following tasks: Configure HDLC and PPP protocols on a serial WAN connection Configure PAP and CHAP authentication on a PPP connection Verify proper point-to-point HDLC and PPP configuration. WAN Overview.

daktari
Download Presentation

Objectives

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Objectives • Upon completion of this chapter, you will be able to perform the following tasks: • Configure HDLC and PPP protocols on a serial WAN connection • Configure PAP and CHAP authentication on a PPP connection • Verify proper point-to-point HDLC and PPP configuration

  2. WAN Overview • WANs connect sites • Connection requirements vary depending on user requirements and cost Service Provider

  3. WAN Connection Types: Layer 1 Synchronous serial Leased Line Asynchronous serial, ISDN Layer 1 Telephone Company Circuit-switched Synchronous serial Packet-switched Service Provider

  4. S S S S S S S Interfacing WAN Service Providers • Provider assigns connection parameters to subscriber WAN service provider toll network CO Switch Local Loop Demarcation Trunks and switches Customer Premises Equipment Point-to-point or circuit-switched connection

  5. Serial Point-to-Point Connections Router connections End user device DTE CSU/DSU DCE Service Provider EIA/TIA-232 EIA/TIA-449 V.35 X.21 EIA-530 Network connections at the CSU/DSU

  6. Typical WAN Encapsulation Protocols: Layer 2 HDLC, PPP, SLIP Leased Line X.25, Frame Relay, ATM Packet-switched Service Provider PPP, SLIP, HDLC Circuit-switched Telephone Company

  7. HDLC Frame Format Cisco HDLC Flag Address Control Proprietary Data FCS Flag • Cisco’s HDLC has a proprietary data field to supportmultiprotocol environments HDLC Flag Address Control Data FCS Flag • Supports only single protocol environments

  8. HDLC Command Router(config-if)#encapsulation hdlc • Enable hdlc encapsulation • HDLC is the default encapsulation on synchronous serial interfaces

  9. An Overview of PPP Multiple protocol encapsulations using NCPs in PPP • PPP can carry packets from several protocol suites using Network Control Programs • PPP controls the setup of several link options using LCP PPP Encapsulation TCP/IP Novell IPX AppleTalk Link setup and control using LCP in PPP

  10. Layering PPP Elements • PPP—A data link with network-layer services IP IPX Layer 3 Protocols Network Layer IPCP IPXCP Many Others PPP Network Control Protocol Data Link Layer Authentication, other options Link Control Protocol Synchronous or Asynchronous Physical Media Physical Layer

  11. PPP LCP Configuration Options How It Operates Protocol Feature Require a password PAP Authentication Perform Challenge Handshake CHAP Compress data at source; reproduce data at destination Stacker or Predictor Compression Error Detection Monitor data dropped on link Quality Magic Number Avoid frame looping Load balancing across multiple links Multilink Protocol (MP) Multilink

  12. PPP Authentication Overview Dialup or Circuit-Switched Network PPP Session Establishment1 Link Establishment Phase 2 Optional Authentication Phase3 Network-Layer Protocol Phase • Two PPP authentication protocols: PAP and CHAP

  13. Selecting a PPP Authentication Protocol PAP 2-Way Handshake Remote Router (SantaCruz) Central-Site Router (HQ) “santacruz, boardwalk” Accept/Reject • Passwords sent in clear text • Peer in control of attempts username santacruz password boardwalk Hostname: santacruz Password: boardwalk

  14. Selecting a PPP Authentication Protocol (cont.) CHAP 3-Way Handshake Remote Router (SantaCruz) Central-Site Router (HQ) Challenge Response • Use “secret” known only to authenticator and peer Accept/Reject username santacruz password boardwalk Hostname: santacruz Password: boardwalk

  15. ü ü ü ü ü ü ü ü Configuring PPP and Authentication Overview Verify who you are. ServiceProvider Authenticating Router (The router that received the call.) ppp encapsulation hostname username / password ppp authentication Router to Be Authenticated (The router that initiated the call.) ppp encapsulation hostname username / password ppp authentication Enabling PPP Enabling PPP Enabling PPP Authentication Enabling PPP Authentication

  16. Configuring PPP Router(config-if)#encapsulation ppp • Enable PPP encapsulation

  17. Configuring PPP Authentication Router(config)#hostname name • Assigns a host name to your router Router(config)#username name password password • Identifies the username and password of authenticating router

  18. Configuring PPP Authentication(cont.) Router(config-if)#ppp authentication{chap | chap pap | pap chap | pap} • Enables PAP and/or CHAP authentication

  19. hostname left username right password sameone ! int serial 0 ip address 10.0.1.1 255.255.255.0 encapsulation ppp ppp authentication CHAP Configuring CHAP Example Leftrouter Right router PSTN/ISDN hostname right username left password sameone ! int serial 0 ip address 10.0.1.2 255.255.255.0 encapsulation ppp ppp authentication CHAP

  20. Verifying HDLC and PPP Encapsulation Configuration Router#show interface s0 Serial0 is up, line protocol is up Hardware is HD64570 Internet address is 10.140.1.2/24 MTU 1500 bytes, BW 1544 Kbit, DLY 20000 usec, rely 255/255, load 1/255 Encapsulation PPP, loopback not set, keepalive set (10 sec) LCP Open Open: IPCP, CDPCP Last input 00:00:05, output 00:00:05, output hang never Last clearing of "show interface" counters never Queueing strategy: fifo Output queue 0/40, 0 drops; input queue 0/75, 0 drops 5 minute input rate 0 bits/sec, 0 packets/sec 5 minute output rate 0 bits/sec, 0 packets/sec 38021 packets input, 5656110 bytes, 0 no buffer Received 23488 broadcasts, 0 runts, 0 giants, 0 throttles 0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored, 0 abort 38097 packets output, 2135697 bytes, 0 underruns 0 output errors, 0 collisions, 6045 interface resets 0 output buffer failures, 0 output buffers swapped out 482 carrier transitions DCD=up DSR=up DTR=up RTS=up CTS=up

  21. 4d20h: %LINK-3-UPDOWN: Interface Serial0, changed state to up 4d20h: Se0 PPP: Treating connection as a dedicated line 4d20h: Se0 PPP: Phase is AUTHENTICATING, by both 4d20h: Se0 CHAP: O CHALLENGE id 2 len 28 from ”left" 4d20h: Se0 CHAP: I CHALLENGE id 3 len 28 from ”right" 4d20h: Se0 CHAP: O RESPONSE id 3 len 28 from ”left" 4d20h: Se0 CHAP: I RESPONSE id 2 len 28 from ”right" 4d20h: Se0 CHAP: O SUCCESS id 2 len 4 4d20h: Se0 CHAP: I SUCCESS id 3 len 4 4d20h: %LINEPROTO-5-UPDOWN: Line protocol on Interface Serial0, changed state to up Verifying PPP Authentication with the debug ppp authentication Command Service Provider Leftrouter Right router debug ppp authentication successful CHAP output

  22. Visual Objective wg_pc_a 10.2.2.12 pod ro’s s0 A 10.140.1.2 B 10.140.2.2 C 10.140.3.2 D 10.140.4.2 E 10.140.5.2 F 10.140.6.2 G 10.140.7.2 H 10.140.8.2 I 10.140.9.2 J 10.140.10.2 K 10.140.11.2 L 10.140.12.2 e0/1 e0/2 e0 wg_ro_a 10.2.2.3 s0 10.140.1.2 wg_sw_a 10.2.2.11 PPP with CHAP wg_pc_l 10.13.13.12 wg_ro_l PPP with CHAP e0/1 s0 10.140.12.2 e0/2 e0 LL 10.13.13.3 wg_sw_l 10.13.13.11 s1/0 - s2/310.140.1.1 … 10.140.12.1 ... fa0/24 fa0/23 fa0/0 core_ server 10.1.1.1 core_ro 10.1.1.3 core_sw_a 10.1.1.2

  23. Summary • After completing this chapter, you should be able to perform the following tasks: • Select an appropriate WAN connection based on your requirements • Configure HDLC and PPP encapsulation methods on your point-to-point WAN connection • Configure CHAP authentication on a PPP connection

  24. Review Questions • 1. What are three types of WAN connections you can enable on a Cisco router? • 2. What are two examples of point-to-point encapsulation protocols and what are the advantages of each? • 3. What are some of the PPP LCP options?

More Related