From: Horszczaruk Krzysztof (Krzysztof.Horszczaruk@xxxxxxxxxxxxx)
Date: Mon May 20 2002 - 05:46:49 GMT-3
It works like that:
Router_A RouterB (typical config, two way authe
ntication)
-----------------------call------------------------->
<-----------ppp auth. challange-------------
-------------ppp auth. challange------------>
<-----------ppp auth. response--------------
-------------ppp auth. response------------->
<-----------ppp auth. success--------------
-------------ppp auth. success-------------->
Router_A Router_B (one way authentication)
no ppp authentication ppp authentication callin
-----------------------call------------------------->
<-----------ppp auth. challange-------------
-------------ppp auth. response------------->
<-----------ppp auth. success---------------
regards,
Krzysztof Horszczaruk
Senior Consultant, System Engineer
Network Integration
Getronics Polska Sp. z o.o.
ul. Pulawska 352a
02-819 Warszawa
POLAND
http://www.getronics.com
http://www.getronics.pl
>>>-----Original Message-----
>>>From: Christopher E. Miller [mailto:chrimill@cisco.com]
>>>Sent: Monday, May 20, 2002 7:37 AM
>>>To: Michael Jia; ccielab@groupstudy.com
>>>Subject: RE: ppp authentication chap callin
>>>
>>>
>>>This statement is backwards. The command goes on the called
>>>router. One
>>>reason for this command is if there is a non-Cisco router
>>>that doesn't
>>>support 2-way authen calling a Cisco router/Access Server..
>>>If this is the
>>>case there is no way you can put ppp authentication chap
>>>callin command on a
>>>non-Cisco router. Its the called router....
>>>
>>>HTH
>>>CHRIS
>>>
>>>-----Original Message-----
>>>From: nobody@groupstudy.com [mailto:nobody@groupstudy.com]On
>>>Behalf Of
>>>Michael Jia
>>>Sent: Monday, May 20, 2002 12:10 AM
>>>To: ccielab@groupstudy.com
>>>Subject: RE: ppp authentication chap callin
>>>
>>>
>>>My understanding is "callin" is used on the *calling* router.
>>>Then called router will authentication the calling router.
>>>Calling router will treat the call as a "call out" and will not
>>>authticate the called router.
>>>
>>>> -----Original Message-----
>>>> From: nobody@groupstudy.com
>>>[mailto:nobody@groupstudy.com]On Behalf Of
>>>> MICHAEL J. KILPATRICK
>>>> Sent: Sunday, May 19, 2002 6:26 PM
>>>> To: ccarley@columbus.rr.com; ccielab@groupstudy.com
>>>> Subject: Re: ppp authentication chap callin
>>>>
>>>>
>>>> Use the CALLIN option on the called router to allow one-way
>>>> authentication. If the called router does not have the CALLIN
>>>> option, the called router will attempt to authenticate back to
>>>> the calling router (ie. 2-way authentication). Play with it with
>>>> deb ppp neg and deb ppp auth.
>>>>
>>>> Mike
>>>>
>>>>
>>>> >>> "Charles Carley" <ccarley@columbus.rr.com> 05/19/02
>>>11:28 AM >>>
>>>> I am having trouble understanding the ppp chap authentication
>>>> callin command
>>>> from what I am finding in the archives. I understand what the
>>>> command does,
>>>> I am just not clear on how to implement it. Does someone have
>>>> the relevant
>>>> configurations from a working scenario they could share?
>>>Thank you.
>>>>
>>>> Charles
This archive was generated by hypermail 2.1.4 : Thu Jun 13 2002 - 10:59:02 GMT-3