Abrer_Wiki

User Tools

Site Tools

Trace:
icnd2:ppp

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revision Previous revision
Next revision Both sides next revision
icnd2:ppp [2024/04/29 02:55]
114.119.138.183 old revision restored (2023/11/17 08:33) 		icnd2:ppp [2024/04/29 04:03]
114.119.149.71 old revision restored (2023/11/23 05:34)
Line 1: Line 1:
 ===== PPP ===== ===== PPP =====
-Beginning+The 'nice' protocol for data-link encapsulation over WAN. Provides AUTHENTICATION and LOAD-BALANCING via Multilinks. 
 + 
 +=== AUTHENTICATION === 
 +== PAP == 
 +Clear text, no no no! But if you had to.. 
 +Requirements: 
 +Local USERNAME and PASSWORD of credentials the REMOTE device will authenticate with. 
 +ppp auth pap 
 +<code> 
 +DOGS#sh run | i username 
 +username CATS password 0 123    <-- USERNAME/PASS here is the same as being sent by remote device. 
 +DOGS#sh run interface s0/0 
 +Building configuration... 
 + 
 +Current configuration : 172 bytes 
 +
 +interface Serial0/0 
 + ip address 172.16.1.1 255.255.255.252 
 + encapsulation ppp 
 + clock rate 2000000 
 + ppp authentication pap    <-- ENABLE PAP 
 + ppp pap sent-username DOGS password 0 123     <-- SEND USERNAME DOGS, PASSWORD 123. Ensure remote router has local user configured. 
 +end 
 +</code> 
  
 == CHAP == == CHAP ==
 Requirements: Requirements:
 USERNAME and PW created for PEERING/AUTHENTICATING DEVICES. USERNAME and PW created for PEERING/AUTHENTICATING DEVICES.
-eg-- If R4 is connecting, a local user of R4 will need to exist. Passwords for authenticating devices will need to be consistent. No PW is sent over the WIRE. Only Hostname, magic#. CHAP uses it's local PW along with the hostname/Magic# of peering device and hashes it via MD5SUM. The MD5 hash is sent to each router. If the hash matches, the routers will authenticate and bring up the PPP link.+eg-- If R4 is connecting, a local user of R4 will need to exist. Passwords for authenticating devices will need to be consistent. No PW is sent over the WIRE. Only Hostname/Magic#. CHAP uses it's local PW along with the Hostname/Magic# of peering device and hashes it via MD5SUM. The MD5 hash is sent to each router. If the hash matches, the routers will authenticate and bring up the PPP link.
  
-== PAP == +ppp auth chap 
-Clear text, no no no!+<code> 
 +DOGS#sh run | i username 
 +username CATS password 0 chap-auth  <-- **CATS** is name of remote device. **Passwords must match.** 
 +DOGS#sh run int s0/0 
 +Building configuration... 
 + 
 +Current configuration : 130 bytes 
 +
 +interface Serial0/0 
 + ip address 172.16.1.1 255.255.255.252 
 + encapsulation ppp 
 + clock rate 2000000 
 + ppp authentication chap    <-- Enable CHAP Authentication! 
 +end 
 +</code> 
 +=== MULTILINK === 
 +[[icnd2:ppp|PPP]]
icnd2/ppp.txt · Last modified: 2024/05/15 21:32 by 114.119.155.78

Page Tools

Except where otherwise noted, content on this wiki is licensed under the following license: CC Attribution-Share Alike 4.0 International
CC Attribution-Share Alike 4.0 International Donate Powered by PHP Valid HTML5 Valid CSS Driven by DokuWiki