VPDN stuff

From: Robert LaGrasse (rlagras1@xxxxxxxxxxxxxxx)
Date: Thu Jul 13 2000 - 17:17:12 GMT-3

• Next message: David Goldsmith: "Re: VPDN stuff"
• Previous message: Kevin M. Woods: "Re: BGP Sync Problem"
• Next in thread: David Goldsmith: "Re: VPDN stuff"
• Maybe reply: David Goldsmith: "Re: VPDN stuff"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

   
   I'll try to keep this as short as possible. I know I'm missing
   something stupid here. If you think you can field this, I'll send you
   the complete configs and the visio drawing. I didn't want to flood the
   list as some might have slow connections.
   
   I have two AS5200's and a 4700 sitting together in an MMP bundle. The
   4700 acts as the offload server, terminating all calls, handing out
   addresses and authenticating users via CiscoSecureACS. I have a 2600
   with an ISDN interface that can dial into the stack group, get an
   address and authenticate and authorize quite happily. The trouble
   comes in when I try to get VPDN to work. I connect a home gateway via
   back to back serial to the 4700 offload server. The 4700 gets setup
   for VPDN action with the "vpdn enable" global command. All
   authentication and authorization are still being handled by the ACS
   box (standard AAA tacacs junk).
   
   The home gateway is setup with the vpdn enable global command and a
   vpdn incoming command pointing to the stack group and virtual template
   1. The template is setup for ppp encap, chap authentication using
   local database, and peer ip addressing defined by a local pool.
   
   When I setup the remote router to dialin (changing the local hostname
   and username database on the same remote router that worked before), I
   get the PPP connection to go to the stack. I don't get the stack to
   forward the L2F connection to the home gateway router. "show vpdn" on
   the 5200 and the offload server show the L2F connection between the
   boxes in the stack group, but not a connection to the home gateway.
   
   I debugged vpdn events on the home gateway. I get nothing, so I don't
   think the requests are being sent. I've never setup ACS to make VPDN
   happen before, so this might be the problem. Is it even possible?
   
   I guess I'm rambling at this point. Sorry for the stream of
   consciousness stuff, folks :)
   
   If you've done this before I've got the configs for a sanity check.
   
   Thanks!
   -B

• Next message: David Goldsmith: "Re: VPDN stuff"
• Previous message: Kevin M. Woods: "Re: BGP Sync Problem"
• Next in thread: David Goldsmith: "Re: VPDN stuff"
• Maybe reply: David Goldsmith: "Re: VPDN stuff"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Thu Jun 13 2002 - 08:23:53 GMT-3