Abrer_Wiki

User Tools

Site Tools

Trace:
icnd2:ppp

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revision Previous revision
icnd2:ppp [2024/04/29 02:55]
114.119.138.183 old revision restored (2023/11/17 08:33) 		icnd2:ppp [2024/04/29 04:03] (current)
114.119.149.71 old revision restored (2023/11/23 05:34)
Line 1: Line 1:
 ===== PPP ===== ===== PPP =====
-Beginning+The 'nice' protocol for data-link encapsulation over WAN. Provides AUTHENTICATION and LOAD-BALANCING via Multilinks. 
 + 
 +=== AUTHENTICATION === 
 +== PAP == 
 +Clear text, no no no! But if you had to.. 
 +Requirements: 
 +Local USERNAME and PASSWORD of credentials the REMOTE device will authenticate with. 
 +ppp auth pap 
 +<code> 
 +DOGS#sh run | i username 
 +username CATS password 0 123    <-- USERNAME/PASS here is the same as being sent by remote device. 
 +DOGS#sh run interface s0/0 
 +Building configuration... 
 + 
 +Current configuration : 172 bytes 
 +
 +interface Serial0/0 
 + ip address 172.16.1.1 255.255.255.252 
 + encapsulation ppp 
 + clock rate 2000000 
 + ppp authentication pap    <-- ENABLE PAP 
 + ppp pap sent-username DOGS password 0 123     <-- SEND USERNAME DOGS, PASSWORD 123. Ensure remote router has local user configured. 
 +end 
 +</code> 
  
 == CHAP == == CHAP ==
 Requirements: Requirements:
 USERNAME and PW created for PEERING/AUTHENTICATING DEVICES. USERNAME and PW created for PEERING/AUTHENTICATING DEVICES.
-eg-- If R4 is connecting, a local user of R4 will need to exist. Passwords for authenticating devices will need to be consistent. No PW is sent over the WIRE. Only Hostname, magic#. CHAP uses it's local PW along with the hostname/Magic# of peering device and hashes it via MD5SUM. The MD5 hash is sent to each router. If the hash matches, the routers will authenticate and bring up the PPP link.+eg-- If R4 is connecting, a local user of R4 will need to exist. Passwords for authenticating devices will need to be consistent. No PW is sent over the WIRE. Only Hostname/Magic#. CHAP uses it's local PW along with the Hostname/Magic# of peering device and hashes it via MD5SUM. The MD5 hash is sent to each router. If the hash matches, the routers will authenticate and bring up the PPP link.
  
-== PAP == +ppp auth chap 
-Clear text, no no no!+<code> 
 +DOGS#sh run | i username 
 +username CATS password 0 chap-auth  <-- **CATS** is name of remote device. **Passwords must match.** 
 +DOGS#sh run int s0/0 
 +Building configuration... 
 + 
 +Current configuration : 130 bytes 
 +
 +interface Serial0/0 
 + ip address 172.16.1.1 255.255.255.252 
 + encapsulation ppp 
 + clock rate 2000000 
 + ppp authentication chap    <-- Enable CHAP Authentication! 
 +end 
 +</code> 
 +=== MULTILINK === 
 +[[icnd2:ppp|PPP]]
icnd2/ppp.txt · Last modified: 2024/04/29 04:03 by 114.119.149.71

Page Tools

Except where otherwise noted, content on this wiki is licensed under the following license: CC Attribution-Share Alike 4.0 International
CC Attribution-Share Alike 4.0 International Donate Powered by PHP Valid HTML5 Valid CSS Driven by DokuWiki