Scribd Logo
Загрузить

Добро пожаловать в Scribd!

  • E1 PPP Principles and Configuration

    Загружено:

    Satender Verma
    56 просмотров35 страниц
    The document discusses Point-to-Point Protocol (PPP) principles and configuration. It covers PPP basics including encapsulation, authentication using PAP and CHAP, and Multi-Link PPP. The course content includes chapters on PPP principles, MPPP principles, and typical configuration examples. Configuration commands for PAP, CHAP, and basic PPP are also provided.

    Исходное описание:

    e1

    Авторское право

    © Attribution Non-Commercial (BY-NC)

    Доступные форматы

    PPT, PDF, TXT или читайте онлайн в Scribd

    Этот документ был вам полезен?

    Это неприемлемый материал?

    Пожаловаться на этот документ
    The document discusses Point-to-Point Protocol (PPP) principles and configuration. It covers PPP basics including encapsulation, authentication using PAP and CHAP, and Multi-Link PPP. The course content includes chapters on PPP principles, MPPP principles, and typical configuration examples. Configuration commands for PAP, CHAP, and basic PPP are also provided.

    Авторское право:

    Attribution Non-Commercial (BY-NC)
    Скачайте в формате PPT, PDF, TXT или читайте онлайн в Scribd
    Отметить как неприемлемый контент
    56 просмотров35 страниц

    E1 PPP Principles and Configuration

    Загружено:

    Satender Verma
    The document discusses Point-to-Point Protocol (PPP) principles and configuration. It covers PPP basics including encapsulation, authentication using PAP and CHAP, and Multi-Link PPP. The course content includes chapters on PPP principles, MPPP principles, and typical configuration examples. Configuration commands for PAP, CHAP, and basic PPP are also provided.

    Авторское право:

    Attribution Non-Commercial (BY-NC)
    Скачайте в формате PPT, PDF, TXT или читайте онлайн в Scribd
    Отметить как неприемлемый контент
    из 35

    PPP Principles and Configuration

    V1.0 Data Customer Service Dept.

    For Internal Internal Use Only Use Only

    Course Objectives
    Grasp the basic principles of PPP Grasp the basic principles of MPPP Familiar with commonly used configuration methods of PPP

    <Confidential and Proprietary Information of ZTE CORPORATION> <Confidential and Proprietary Information of ZTE Corporation >

    For Internal Internal Use Only Use Only

    Course Outline
    Chapter 1 PPP Principles Chapter 2 MPPP Principles Chapter 3 Typical Configurations

    <Confidential and Proprietary Information of ZTE CORPORATION> <Confidential and Proprietary Information of ZTE Corporation >

    For Internal Internal Use Only Use Only

    Course Content
    Chapter 1 PPP Principles
    Section 1 PPP Overview Section 2 PPP Working Mechanism Section 3 PPP Authentication

    <Confidential and Proprietary Information of ZTE CORPORATION> <Confidential and Proprietary Information of ZTE Corporation >

    Definition

    Internal Use Only

    PPP provides a standard method to transmit multiple datagram of Network Layer on Point-toPoint links
    Correspondence of PPP and Protocol Stack
    Application Presentation Session Transport Network Data-link Physical

    PPP Protocol

    <Confidential and Proprietary Information of ZTE CORPORATION>

    Features

    Internal Use Only

    Support point-to-point (refer to as P2P hereinafter) connection,


    provide authentication function, guarantee the network security via PAP or CHAP authentication

    Physical Layer below PPP can be either synchronous or


    asynchronous circuits. Frame Relay must be asynchronous circuits.

    Support various Network Control Protocol (NCP), such as IPCP,


    IPXCP.

    <Confidential and Proprietary Information of ZTE CORPORATION>

    For Internal Internal Use Only Use Only

    Course Content
    Chapter 1 PPP Principles
    Section 1 PPP Overview Section 2 PPP Working Mechanism Section 3 PPP Authentication

    <Confidential and Proprietary Information of ZTE CORPORATION> <Confidential and Proprietary Information of ZTE Corporation >

    PPP Three Components

    Internal Use Only

    Encapsulate various network protocol datagram

    TCP/IP NOVELL IPX

    PPP uses NCP to provide support to various network protocols

    PPP

    LCP is used to create and maintain links

    <Confidential and Proprietary Information of ZTE CORPORATION>

    PPP Protocol Stack

    Internal Use Only

    Network Layer

    IP, IPX and other network protocols IPCP, IPXCP and other NCP

    Data-link Layer

    Authentication and other LCP

    Physical Layer

    Physical MediaSynchronous /Asynchronous

    <Confidential and Proprietary Information of ZTE CORPORATION>

    Data Frame Format

    Internal Use Only

    Fixed Value
    0x7E
    Flag

    0xFF 0x03
    Address Control Protocol Field Information Field Default 1500B Checksum 2B

    0x7E
    Flag 1B

    1B

    1B

    1B

    2B

    1B=1Byte

    <Confidential and Proprietary Information of ZTE CORPORATION>

    Several Common Datagram of PPP

    Internal Use Only

    Protocol Field

    Information Filed

    0x0021

    IP Datagram

    Checksum

    0xC021

    LCP Datagram

    Checksum

    0x8021

    NCP Datagram

    Checksum

    Protocol field is 2-byte in length used to indicate the protocol type carried in Information Field.

    <Confidential and Proprietary Information of ZTE CORPORATION>

    PPP Negotiation Flow

    Internal Use Only

    Bottom Layer up

    LCP up

    Dead Phase

    Establish Phase

    Authenticate Phase

    Fail

    Authentication Fail

    Authentication Pass or No Authentication

    down

    Terminate Phase

    Network Phase

    Closed

    <Confidential and Proprietary Information of ZTE CORPORATION>

    For Internal Internal Use Only Use Only

    Course Content
    Chapter 1 PPP Principles
    Section 1 PPP Overview Section 2 PPP Working Mechanism Section 3 PPP Authentication

    <Confidential and Proprietary Information of ZTE CORPORATION> <Confidential and Proprietary Information of ZTE Corporation >

    PAP Authentication
    Authenticatee
    UsernamePassword

    Internal Use Only

    Authenticator

    Pass / Deny

    PAP is the simplest authentication method with lowest security level, which is a two-way handshake process.

    <Confidential and Proprietary Information of ZTE CORPORATION>

    CHAP Authentication
    Authenticatee

    Internal Use Only

    Authenticator

    Hostname Random datagram

    Hostname Encrypted Datagram

    Pass /Deny

    CHAP is another authentication protocol with higher security level than PAP.
    <Confidential and Proprietary Information of ZTE CORPORATION>

    CHAP Challenge

    Internal Use Only

    Authenticatee
    User dials in

    Authenticator

    2604

    3604

    01 id random

    3604

    <Confidential and Proprietary Information of ZTE CORPORATION>

    CHAP Response (1)


    Authenticatee
    User dials in 2604 host ZTE pass pc1

    Internal Use Only

    Authenticator

    3604

    01 id random

    3604

    MD5 hash

    <Confidential and Proprietary Information of ZTE CORPORATION>

    CHAP Response(2)
    Authenticatee
    User dials in 2604

    Internal Use Only

    Authenticator

    3604

    host ZTE

    pass pc1

    01 id random

    3604

    02 id
    MD5 hash

    hash

    ZTE

    <Confidential and Proprietary Information of ZTE CORPORATION>

    CHAP Authentication
    Authenticatee
    User dials in 2604 host ZTE pass pc1

    Internal Use Only

    Authenticator

    3604

    01 id random

    3604

    user ZTE

    pass pc1

    02 id
    MD5 hash

    hash

    ZTE
    MD5

    =?

    hash

    <Confidential and Proprietary Information of ZTE CORPORATION>

    CHAP Result
    Authenticatee
    User dials in 2604 host ZTE pass pc1

    Internal Use Only

    Authenticator

    3604

    01 id random

    3604

    user ZTE

    pass pc1

    02 id
    MD5 hash

    hash

    ZTE
    MD5 hash

    03 id Welcome in

    <Confidential and Proprietary Information of ZTE CORPORATION>

    For Internal Internal Use Only Use Only

    Course Content
    Chapter 2 MPPP Principles

    <Confidential and Proprietary Information of ZTE CORPORATION> <Confidential and Proprietary Information of ZTE Corporation >

    Definitions

    Internal Use Only

    MPMultiLink PPP
    MP binds multiple PPP links into one bundle in order to increase bandwidth. MP allows to segment datagram and transfer the segments to one destination via multiple point-tot-point links.

    <Confidential and Proprietary Information of ZTE CORPORATION>

    Negotiation Process of MP Links

    Internal Use Only

    Step1: Perform LCP Negotiation with Peer End

    Besides LCP negotiation, it also verifies whether peer end interface is working in MP mode.

    If the peer end is not working in MP mode, it will go on general NCP

    negotiation but not perform MP bundling after LCP negotiation success.

    Step2: Perform PPP Authentication, obtain username of peer end.

    If peer end is working in MP mode, it will find virtual interface template for this designated user and perform NCP negotiation using various NCP parameters (such as IP address etc.) in this template. The NCP parameters configured on physical interface does not function.

    After NCP negotiation, MP link will be established so that data can be transferred with larger bandwidth.

    <Confidential and Proprietary Information of ZTE CORPORATION>

    Negotiation Parameters of MP Link

    Internal Use Only

    If a PPP channel negotiate following parameters in LCP, it can


    be bound as a sub-channel of MP:

    MRRUMaximum Received Reconstructed Unit: similar to ordinary MRU parameter in PPP.

    SSNHFShort Sequence Number Header Format: optional parameter.

    Endpoint Discriminator: a character string uniquely mark a

    network devices (router, host etc.) Only the PPP channels that
    match Endpoint Discriminator can be bound to one MP.

    The identifiers used for MP bundling are: username and Endpoint Discriminator.

    <Confidential and Proprietary Information of ZTE CORPORATION>

    For Internal Internal Use Only Use Only

    Course Content
    Chapter 3 Typical Configurations
    Section 1 Basic Configuration Commands Section 2 Typical Configuration Examples

    <Confidential and Proprietary Information of ZTE CORPORATION> <Confidential and Proprietary Information of ZTE Corporation >

    Basic Configuration Commands

    Internal Use Only

    Encapsulation PPP

    encapsulation ppp

    Set authentication Type

    ppp authentication {pap|chap}

    Set username and password

    user username password password

    <Confidential and Proprietary Information of ZTE CORPORATION>

    PAP Configuration Commands

    Internal Use Only

    Authenticator Configuration

    Configuring authentication type ppp authentication pap Configuring user list user username password password

    Authenticatee Configuration

    Configuring PAP username ppp pap sent-username username password password

    <Confidential and Proprietary Information of ZTE CORPORATION>

    CHAP Configuration Commands

    Internal Use Only

    Authenticator configuration:

    Configuring local as authenticatorauthentication type is CHAP ppp authentication chap

    Configuring local hostname ppp chap host hostname

    Add username and password into local user list user username password password

    Authenticatee Configuration:

    Configuring local hostname and peer end username and password ppp chap host hostname

    user username password password


    <Confidential and Proprietary Information of ZTE CORPORATION>

    For Internal Internal Use Only Use Only

    Course Content
    Chapter 3 Typical Configurations
    Section 1 Basic Configuration Commands Section 2 Configuration Examples

    <Confidential and Proprietary Information of ZTE CORPORATION> <Confidential and Proprietary Information of ZTE Corporation >

    Typical Configuration Examples I

    Internal Use Only

    Authenticator

    Authenticatee PAP authentication ce1_3/1.1 ce1_3/1.1 ZXR10_2

    ZXR10_1

    ZXR10(config)# username zte1 password zte ZXR10(config)# interface ce1_3/1.1 ZXR10(config-subif)# ppp authentication pap

    ZXR10(config)# interface e1_3/1.1 ZXR10(config-subif)# ppp pap sent-username zte1 password zte

    <Confidential and Proprietary Information of ZTE CORPORATION>

    Typical Configuration Examples II


    Authenticator
    ce1_3/1.1

    Internal Use Only

    CHAP authentication Authenticatee


    ce1_3/1.1

    ZXR10_1

    ZXR10_2

    ZXR10(config)# username zte2 password zte1 ZXR10(config)# interface ce1_3/1.1 ZXR10(config-subif)# ppp authentication chap

    ZXR10(config)# interface ce1_3/1.1 ZXR10(config-subif)# ppp chap host zte2 ZXR10(config-subif)# ppp chap password zte1

    <Confidential and Proprietary Information of ZTE CORPORATION>

    Monitor and Maintenance

    Internal Use Only

    Operation

    Command show username

    Display local user for PPP Authentication Display PPP configuration and running state of interface

    show interface interface-name

    <Confidential and Proprietary Information of ZTE CORPORATION>

    Fault Diagnosis and Troubleshooting

    Internal Use Only

    Fault 1: Link cannot turn into UP state

    PPP authentication parameters configuration is incorrect

    Fault 2: Physical link cannot turn into UP state

    Use command show interface to view interface state

    <Confidential and Proprietary Information of ZTE CORPORATION>

    Summary

    Internal Use Only

    What are the three components of PPP? Briefly describe the PPP negotiation process. Describe the process of PAP authentication in brief. Describe the process of CHAP authentication in brief. What is the working principles of MPPP?

    <Confidential and Proprietary Information of ZTE CORPORATION>

    Вам также может понравиться