Part 3 - Commands and Terminology

Theory

Config Terminology

HDLC TDM

CO, CPE, CSU/DSU and DTE/DCE

(conf-if)# encapsulation HDLC

Theory (conf-if)# clock rate (DCE SIDE) Data Terminal Equipment / Data Communication Equipment

OPTIONAL (conf-if)# bandwidth (to match serial's actual speed) Channel Service Unit / Data Service Unit
Config SSL
OPTIONAL (conf-if)# description DSL, ADSL, DSLAM

GRE Browser PPP (same as HDLC but for additional features) Leased lines

Cisco AnyConnect Secure Mobility Client

(conf)# int tunnel X (conf-if)# encapsulation PPP DS0, DS1=T1, DS3=T3, E1, E3
GRE
(conf-if)# tunnel mode GRE IP (conf-if)# PPP authentication {CHAP and/or PAP) HDLC, and Cisco HDLC

(conf-if)# IP add a.b.c.d a.b.c.d NOT TCP/UDP separate L4 (47) PPP: LCP ~ L2 and NCP ~L3 and up
CHAP PAP
(conf-if)# tunnel source {int | IP add} Tunnel has a secure IP on top of the int IP
LCP: Loop detection, error detection, authentication, multilink support
(conf-if)# tunnel destination {IP add | hostname} Dynamic Multipoint VPN (DMVPN) create a USER matching remote HOSTNAME (conf-if)# PPP PAP sent-username {word} password {word}
PPP authentication with PAP and CHAP
IPsec Use a password common for both devices do this on both devices
CHECK ACL AND ROUTING MLPPP
MLPPP
Two encryption algorithms,
one to encrypt and another to decrypt Frame fragments
MULTILINK PHYSICAL
Session key (shared key, encryption key) Exec

Key also encrypted (along with data), then new VPN header (conf-if)# IP address (conf-if)# no ip address
#sh interfaces [status]
Exec (conf-if)# encapsulation PPP (conf-if)# encapsulation PPP
#sh controllers
(conf-if)# PPP multilink (conf-if)# PPP multilink
#sh int #sh ip int br
(conf-if)# PPP multilink group X (conf-if)# PPP multilink group X
#sh ip int PPP
(conf-if)# AUTHENTICATION STUFF

(conf-if) [no] keepalive #sh PPP all

# debug PPP authentication

Must match on HDLC links

Theory

Config PPPoE Session

PPPoE client side Dialer and Physical looking MetroE L2

at the same dialer pool

(conf)# int dialer X Physical Virtual Access interface MPLS L2.5 - 3 Terminology

Process
(conf-if)# dialer-pool {number Z} (conf-if)# PPPoE client-pool dial-pool-number {number Z} Terminology 100Base-LX10 ......10KM
1000Base-LX ...... 5KM
(conf-if)# encapsulation PPP (conf-if)# PPPoE enabled Tunnel Header -> PPP header -> original IP packet 1000Base-LX10 ....... 10KM
PE - CE (Customer, PRovider Edge)
1000Base-ZX ...... 100KM
(conf-if)# PPP CHAP {hostname} (conf-if)# no ip address Exec
10Gbase-LR ...... 10KM
MPBGP and redistribution if needed
(conf-if) PPP CHAP {password} 10Gbase-ER ...... 40KM
#sh int Who's neighbour with Who : )
(conf-if) IP address negotiate E-Line (Virtual Private Wire Service)
OSPF Area Super-Backbone 0 E-LAN (Virtual Private LAN Service)
#sh ip int br
(conf-if) MTU 1492 E-Tree
#sh int dialer Best to use same ASN when EIGRP
L2
#sh int virtual-access {x} [configuration]
EVC (Ethernet Virtual Circuit/Connection)
#sh PPPoE session [int x]
Charging Based on CIR (Committed Information Rate)
Subtopic 4

WAN: PPP, HDLC, MPLS, MetroE, PPPoE, GRE, VPN,