|
|
This appendix contains NAS and home gateway configuration files referred to in this document. The following configuration files are shown:
This section contains NAS and home gateway configurations for using Cisco RPMS with a local AAA server and a single home gateway. These sample configurations refer to the following devices:
Building configuration... Current configuration: ! version 12.0 service timestamps debug uptime service timestamps log uptime no service password-encryption ! hostname qa5300e ! aaa new-model aaa group server tacacs+ coney server 10.3.15.2 ! aaa group server tacacs+ pagoda server 10.6.8.25 ! aaa authentication login default pagoda //--it uses tacacs server group "pagoda" for telnet authentication--// aaa authentication ppp default pagoda //--it uses tacacs server group "pagoda" for ppp user authentication--// aaa accounting network default start-stop group pagoda //--it uses tacacs server group "pagoda" for accounting information --// enable password cisco ! username cisco password 0 cisco username qa5300e password 0 cisco ! resource-pool enable resource-pool call treatment resource channel-not-available resource-pool call treatment profile no-answer ! resource-pool group resource digital range limit 10 ! resource-pool group resource async1 range port 1/0 1/10 ! resource-pool group resource async2 range port 1/11 1/20 ! resource-pool group resource async3 range port 1/21 1/30 resource-pool aaa accounting ppp resource-pool aaa protocol group coney ! modem recovery action none ip subnet-zero no ip domain-lookup ip host coney 10.3.15.2 ip host pagoda 10.6.8.25 ip host qa5300e 10.1.0.33 ip host csnt-acs 10.5.5.13 ! vpdn enable //--to enable vpdn--// ! isdn switch-type primary-5ess chat-script modemchat "" "ATZ" OK "ATDT\\T" TIMEOUT 90 CONNECT chat-script login-ppp TIMEOUT 90 "" "" > ppp "Entering PPP" chat-script dial "" "ATDT\T" TIMEOUT 120 CONNECT \p ! ! controller T1 0 framing esf clock source line primary linecode b8zs pri-group timeslots 1-24 ! controller T1 1 framing esf clock source line secondary 1 linecode b8zs ! controller T1 2 ! controller T1 3 ! ! ! interface Ethernet0 no ip address no ip directed-broadcast shutdown ! interface Serial0:23 ip unnumbered FastEthernet0 no ip directed-broadcast ip trigger-authentication encapsulation ppp no ip route-cache dialer idle-timeout 2147483 dialer-group 1 isdn switch-type primary-5ess isdn incoming-voice modem peer default ip address pool default no fair-queue no cdp enable ppp authentication chap ppp multilink ! interface FastEthernet0 ip address 10.1.0.33 255.0.0.0 no ip directed-broadcast ! interface Group-Async1 ip unnumbered FastEthernet0 no ip directed-broadcast encapsulation ppp async dynamic routing async mode interactive peer default ip address pool ippool1 no fair-queue no cdp enable ppp authentication chap group-range 1 24 hold-queue 10 in ! ip local pool ippool1 12.0.1.20 12.0.1.30 ip local pool default 10.5.10.1 10.5.10.2 no ip classless ip route 12.0.0.0 255.0.0.0 12.0.2.2 ip route 100.0.0.0 255.0.0.0 Serial0:23 no ip http server ! dialer-list 1 protocol ip permit ! tacacs-server host 10.6.8.25 tacacs-server host 10.3.15.2 tacacs-server key cisco tacacs-server administration ! line con 0 exec-timeout 0 0 transport input none line 1 24 autoselect ppp script dialer dial modem InOut no modem status-poll transport input all line 25 48 line aux 0 line vty 0 4 exec-timeout 0 0 password cisco line vty 5 20 password cisco line vty 21 24 ! end qa5300e# qa5300e#
Building configuration... Current configuration: ! version 12.0 service timestamps debug uptime service timestamps log uptime no service password-encryption ! hostncsnt-acsame csnt-acs ! boot system slot0:c7200-js-mz.120-2.7.T aaa new-model aaa authentication login default tacacs+ aaa authentication ppp default tacacs+ aaa authorization network default tacacs+ enable password cisco ! username cisco password 0 cisco ip subnet-zero ! multilink virtual-template 1 vpdn enable vpdn multihop ! vpdn-group 1 accept dialin l2f virtual-template 1 remote isp local name hg ! vpdn-group 2 accept dialin l2tp virtual-template 1 remote isp local name hg ! ! ! ! interface FastEthernet0/0 no ip address no ip directed-broadcast shutdown ! interface FastEthernet1/0 ip address 10.5.5.13 255.0.0.0 no ip directed-broadcast full-duplex ! interface Ethernet2/0 no ip address no ip directed-broadcast shutdown ! interface Ethernet2/1 no ip address no ip directed-broadcast shutdown ! interface Ethernet2/2 no ip address no ip directed-broadcast shutdown ! interface Ethernet2/3 no ip address no ip directed-broadcast shutdown ! interface FastEthernet5/0 no ip address shutdown ! interface FastEthernet5/1 no ip address shutdown ! interface Ethernet5/2 no ip address shutdown ! interface Ethernet5/3 no ip address shutdown ! interface Ethernet5/4 no ip address shutdown ! interface Ethernet5/5 no ip address shutdown ! interface Ethernet5/6 no ip address shutdown ! interface Ethernet5/7 no ip address shutdown ! interface Ethernet5/8 no ip address shutdown ! interface Ethernet5/9 no ip address shutdown ! interface Ethernet5/10 no ip address shutdown ! interface Ethernet5/11 no ip address shutdown ! interface Ethernet5/12 no ip address shutdown ! interface Ethernet5/13 no ip address shutdown ! interface Virtual-Template1 ip unnumbered FastEthernet1/0 no ip directed-broadcast peer default ip address pool ippool1 ppp authentication chap ppp multilink ! ip local pool ippool1 12.1.1.10 12.1.1.20 no ip classless no ip http server ! tacacs-server host 10.5.55.47 tacacs-server key cisco ! line con 0 exec-timeout 0 0 transport input none line aux 0 line vty 0 4 exec-timeout 0 0 password cisco login ! end
This section contains NAS and home gateway configurations for using Cisco RPMS with a local AAA server and multiple home gateways. These sample configurations refer to the following devices:
Building configuration... Current configuration: ! version 12.0 service timestamps debug uptime service timestamps log uptime no service password-encryption ! hostname qa5300e ! aaa new-model aaa group server tacacs+ coney server 10.3.15.2 ! aaa group server tacacs+ pagoda server 10.6.8.25 ! aaa authentication login default pagoda //--it uses tacacs server group "pagoda" for telnet authentication--// aaa authentication ppp default pagoda //--it uses tacacs server group "pagoda" for ppp user authentication--// aaa accounting network default start-stop group pagoda //--it uses tacacs server group "pagoda" for accounting information --// enable password cisco ! username cisco password 0 cisco username qa5300e password 0 cisco ! resource-pool enable resource-pool call treatment resource channel-not-available resource-pool call treatment profile no-answer ! resource-pool group resource digital range limit 10 ! resource-pool group resource async1 range port 1/0 1/10 ! resource-pool group resource async2 range port 1/11 1/20 ! resource-pool group resource async3 range port 1/21 1/30 resource-pool aaa accounting ppp resource-pool aaa protocol group coney ! modem recovery action none ip subnet-zero no ip domain-lookup ip host coney 10.3.15.2 ip host pagoda 10.6.8.25 ip host qa5300e 10.1.0.33 ip host apm7200 10.5.5.13 ! vpdn enable //--to enable vpdn--// ! isdn switch-type primary-5ess chat-script modemchat "" "ATZ" OK "ATDT\\T" TIMEOUT 90 CONNECT chat-script login-ppp TIMEOUT 90 "" "" > ppp "Entering PPP" chat-script dial "" "ATDT\T" TIMEOUT 120 CONNECT \p ! ! controller T1 0 framing esf clock source line primary linecode b8zs pri-group timeslots 1-24 ! controller T1 1 framing esf clock source line secondary 1 linecode b8zs ! controller T1 2 ! controller T1 3 ! ! ! interface Ethernet0 no ip address no ip directed-broadcast shutdown ! interface Serial0:23 ip unnumbered FastEthernet0 no ip directed-broadcast ip trigger-authentication encapsulation ppp no ip route-cache dialer idle-timeout 2147483 dialer-group 1 isdn switch-type primary-5ess isdn incoming-voice modem peer default ip address pool default no fair-queue no cdp enable ppp authentication chap ppp multilink ! interface FastEthernet0 ip address 10.1.0.33 255.0.0.0 no ip directed-broadcast ! interface Group-Async1 ip unnumbered FastEthernet0 no ip directed-broadcast encapsulation ppp async dynamic routing async mode interactive peer default ip address pool ippool1 no fair-queue no cdp enable ppp authentication chap group-range 1 24 hold-queue 10 in ! ip local pool ippool1 12.0.1.20 12.0.1.30 ip local pool default 10.5.10.1 10.5.10.2 no ip classless ip route 12.0.0.0 255.0.0.0 12.0.2.2 ip route 100.0.0.0 255.0.0.0 Serial0:23 no ip http server ! dialer-list 1 protocol ip permit ! tacacs-server host 10.6.8.25 tacacs-server host 10.3.15.2 tacacs-server key cisco tacacs-server administration ! line con 0 exec-timeout 0 0 transport input none line 1 24 autoselect ppp script dialer dial modem InOut no modem status-poll transport input all line 25 48 line aux 0 line vty 0 4 exec-timeout 0 0 password cisco line vty 5 20 password cisco line vty 21 24 ! end
Building configuration... Current configuration: ! version 12.0 service timestamps debug uptime service timestamps log uptime no service password-encryption ! hostname apm7200 ! boot system slot0:c7200-js-mz.120-2.7.T aaa new-model aaa authentication login default tacacs+ aaa authentication ppp default tacacs+ aaa authorization network default tacacs+ enable password cisco ! username cisco password 0 cisco username mystack password 0 cisco ip subnet-zero ! multilink virtual-template 1 ! sgbp group mystack sgbp seed-bid offload sgbp member qa5300e 10.1.0.33 sgbp member qa5300g 10.5.5.31 vpdn enable vpdn multihop vpdn-group 1 accept dialin l2f virtual-template 1 remote isp local name hg ! vpdn-group 2 accept dialin l2tp virtual-template 1 remote isp local name hg ! interface FastEthernet0/0 no ip address no ip directed-broadcast shutdown ! interface FastEthernet1/0 ip address 10.5.5.13 255.0.0.0 no ip directed-broadcast full-duplex ! interface Ethernet2/0 no ip address no ip directed-broadcast shutdown ! interface Ethernet2/1 no ip address no ip directed-broadcast shutdown ! interface Ethernet2/2 no ip address no ip directed-broadcast shutdown ! interface Ethernet2/3 no ip address no ip directed-broadcast shutdown ! interface FastEthernet5/0 no ip address shutdown ! interface FastEthernet5/1 no ip address shutdown ! interface Ethernet5/2 no ip address shutdown ! interface Ethernet5/3 no ip address shutdown ! interface Ethernet5/4 no ip address shutdown ! interface Ethernet5/5 no ip address shutdown ! interface Ethernet5/6 no ip address shutdown ! interface Ethernet5/7 no ip address shutdown ! interface Ethernet5/8 no ip address shutdown ! interface Ethernet5/9 no ip address shutdown ! interface Ethernet5/10 no ip address shutdown ! interface Ethernet5/11 no ip address shutdown ! interface Ethernet5/12 no ip address shutdown ! interface Ethernet5/13 no ip address shutdown ! interface Virtual-Template1 ip unnumbered FastEthernet1/0 no ip directed-broadcast peer default ip address pool ippool1 ppp authentication chap ppp multilink ! ip local pool ippool1 12.1.1.10 12.1.1.20 no ip classless no ip http server ! tacacs-server host 10.5.55.47 tacacs-server key cisco ! line con 0 exec-timeout 0 0 transport input none line aux 0 line vty 0 4 exec-timeout 0 0 password cisco login ! end
Building configuration... Current configuration: ! version 12.0 service timestamps debug uptime service timestamps log uptime no service password-encryption ! hostname qa5300g ! aaa new-model aaa authentication login default tacacs+ aaa authentication ppp default tacacs+ aaa authorization network default tacacs+ ! username cisco password 0 cisco username mystack password 0 cisco ! resource-pool disable ip subnet-zero ! multilink virtual-template 1 ! sgbp group mystack sgbp member apm7200 10.5.5.13 sgbp member qa5300e 10.1.0.33 vpdn enable vpdn multihop ! vpdn-group 1 accept dialin l2f virtual-template 1 remote isp local name hg ! vpdn-group 2 accept dialin l2tp virtual-template 1 remote isp local name hg ! controller T1 0 clock source line primary ! controller T1 1 clock source line secondary 1 ! controller T1 2 ! controller T1 3 ! interface Ethernet0 ip address 10.5.5.31 255.0.0.0 no ip directed-broadcast shutdown ! interface Virtual-Template1 ip unnumbered FastEthernet0 no ip directed-broadcast peer default ip address pool ippool1 ppp authentication chap ppp multilink ! interface FastEthernet0 ip address 10.5.5.31 255.0.0.0 no ip directed-broadcast ! ip local pool ippool1 12.1.1.10 12.1.1.20 no ip classless no ip http server ! tacacs-server host 10.5.55.47 tacacs-server key cisco ! line con 0 exec-timeout 0 0 transport input none line 1 48 line aux 0 line vty 0 4 exec-timeout 0 0 password cisco login ! end
Posted: Thu May 20 13:29:48 PDT 1999
Copyright 1989-1999©Cisco Systems Inc.