1 févr. 2012

PPP#1 - Authentication

Client/Server authentication

"Client" side:
!
interface Serial1/0
 ip address 192.168.12.1 255.255.255.0
 encapsulation ppp
 ppp chap hostname ROUTER1
 ppp chap password 0 CISCO
!

Server side:
!
interface Serial1/0
 ip address 192.168.12.2 255.255.255.0
 encapsulation ppp
 ppp authentication chap callin
!
username ROUTER1 password CISCO
!

Same kind of configuration for pap:
"Client" side: 
!
interface Serial1/0
 ip address 192.168.12.1 255.255.255.0
 encapsulation ppp
 serial restart-delay 0
 ppp chap password 0 CISCO
 ppp pap sent-username ROUTER1 password 0 CISCO
!
Server side:
!
interface Serial1/0
 ip address 192.168.12.2 255.255.255.0
 encapsulation ppp
 serial restart-delay 0
 ppp authentication pap callin
end

Mutual Authentication (PAP & CHAP):
On r1:
!
interface Serial1/0
 ip address 192.168.12.1 255.255.255.0
 encapsulation ppp
 serial restart-delay 0
 ppp authentication pap chap
 ppp pap sent-username ROUTER1 password 0 CISCO
!
username ROUTER2 password CISCO
!

On r2:

!
interface Serial1/0
 ip address 192.168.12.1 255.255.255.0
 encapsulation ppp
 serial restart-delay 0
 ppp authentication pap chap
 ppp pap sent-username ROUTER2 password 0 CISCO
!

username ROUTER1 password CISCO
!

Don't forget ppp authentication pap chap cmd.

Debug with: debug ppp negotiation.


-
Libellés :

NTP - ACL

NTP - Network Time Protocol Packet types: -  Control messages : don't bother with this. -  NTP request/update messages: used for time sy...

  • Unicast Reverse Path Forwarding (uRPF)
    Unicast Reverse Path Forwarding (uRPF) uRPF est une feature permettant d'éviter l'IP Spoofing. Lorsque urpf est activé sur une in...
  • NTP - ACL
    NTP - Network Time Protocol Packet types: -  Control messages : don't bother with this. -  NTP request/update messages: used for time sy...
  • Basic IPsec Virtual Tunnel Interface - VTI
    Le but est de monter un tunnel IPSec entre deux routeurs en utilisant des VTI. La clé partagée est: 1234. hostname R1 ! crypto isakm...