RE: IE lab 14 task 4.4-4.8

From: Brian McGahan (bmcgahan@internetworkexpert.com)
Date: Sat Jul 03 2004 - 01:37:34 GMT-3

• Next message: Howard C. Berkowitz: "Re: changing spanning tree timers"
• Previous message: Brian McGahan: "RE: lab 8 task 6.3-6.5 bgp installed routes"
• Maybe in reply to: samccie2004@yahoo.co.uk: "IE lab 14 task 4.4-4.8"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Sam,

        The "ppp chap password" command can only be used to generate a
CHAP response. If the device in question has the "ppp authentication
chap" command configured the default password cannot be used.

HTH,

Brian McGahan, CCIE #8593
bmcgahan@internetworkexpert.com

Internetwork Expert, Inc.
http://www.InternetworkExpert.com
Toll Free: 877-224-8987 x 705
Outside US: 775-826-4344 x 705

> -----Original Message-----
> From: nobody@groupstudy.com [mailto:nobody@groupstudy.com] On Behalf
Of
> samccie2004@yahoo.co.uk
> Sent: Friday, July 02, 2004 11:26 AM
> To: studygroup; Brian McGahan
> Subject: RE: IE lab 14 task 4.4-4.8
>
> Hi Brian
>
> Thanks for the answer.
> But would "ppp chap password" and "ppp chap username" combination
provide
> the right combination for R5 to accept?
>
> Regards
>
> Sam
>
> PS: the more I ask now the less I will on Monday
>
> -----Original Message-----
> From: nobody@groupstudy.com [mailto:nobody@groupstudy.com]On Behalf Of
> Brian McGahan
> Sent: 02 July 2004 17:43
> To: Mike Calhoon; samccie2004@yahoo.co.uk; studygroup
> Subject: RE: IE lab 14 task 4.4-4.8
>
>
> Sam,
>
> R5 calls R4, R4 calls R5 back. R5 says "ppp authentication chap
> callin", so R5 challenges R4 via CHAP. R4 receives the challenge from
> R5, what does it do with it? How does it derive the hash value to
> respond?
>
>
> HTH,
>
> Brian McGahan, CCIE #8593
> bmcgahan@internetworkexpert.com
>
> Internetwork Expert, Inc.
> http://www.InternetworkExpert.com
> Toll Free: 877-224-8987 x 705
> Outside US: 775-826-4344 x 705
>
> > -----Original Message-----
> > From: nobody@groupstudy.com [mailto:nobody@groupstudy.com] On Behalf
> Of
> > Mike Calhoon
> > Sent: Friday, July 02, 2004 6:50 AM
> > To: samccie2004@yahoo.co.uk; 'studygroup'
> > Subject: RE: IE lab 14 task 4.4-4.8
> >
> > Sam,
> >
> > I see what you are saying. I am thinking it has to be there for
the
> > callback section. In the class map it is using "dialer
> callback-server
> > username", which if I remember correctly will only call back users
if
> the
> > dial-in name matches what is in the router's database. I could be
> wrong
> > on
> > that...perhaps authentication from R4 is not necessarily needed. I
am
> > sure
> > someone else in the group can help clarify.
> >
> > Thanks,
> > Mike
> >
> >
> > -----Original Message-----
> > From: nobody@groupstudy.com [mailto:nobody@groupstudy.com] On Behalf
> Of
> > samccie2004@yahoo.co.uk
> > Sent: Friday, July 02, 2004 7:25 AM
> > To: Mike Calhoon; 'studygroup'
> > Subject: RE: IE lab 14 task 4.4-4.8
> >
> > I agree with ur explanation except for the part that says R4 is
> > challenging
> > R5 cos I cannot see it on the requirement. Is it implied anywhere ?
> >
> > If I break down the whole task, this is what I make of it:
> >
> > 4.4 R4 accept callback. R5 request callback.
> > 4.5 R4 must be secure callback server.
> > 4.6 R5 challenges callers PPP CHAP.
> > 4.7 R4 chap hostname ROUTER4 and matching username on R5.
> > 4.8 R5 CHAP callin only
> >
> > So I still cannot see where R4 should challenge R5.
> >
> > TIA
> >
> > Sam
> >
> > -----Original Message-----
> > From: Mike Calhoon [mailto:mcalhoon27@earthlink.net]
> > Sent: 02 July 2004 13:13
> > To: samccie2004@yahoo.co.uk; 'studygroup'
> > Subject: RE: IE lab 14 task 4.4-4.8
> >
> >
> > Hi Sam,
> >
> > R4 is configured to challenge R5 inbound and outbound, so it does
need
> the
> > username there. You can tell because it has the "ppp authentication
> chap"
> > line in it, which tells the router to authenticate both ways. R5
does
> not
> > challenge R4 when it calls R4. You can tell because it has the "ppp
> > authentication chap callin" line. When R4 authenticates R5 and
> determines
> > it is a callback request, it will hang up and call R5 back. Then R5
> will
> > authenticate R4 as "ROUTER4".
> >
> > Thanks,
> > Mike
> >
> >
> > -----Original Message-----
> > From: nobody@groupstudy.com [mailto:nobody@groupstudy.com] On Behalf
> Of
> > samccie2004@yahoo.co.uk
> > Sent: Friday, July 02, 2004 3:58 AM
> > To: studygroup
> > Subject: IE lab 14 task 4.4-4.8
> >
> > Hi Group
> >
> > In R4, I cannot see why we have to configure username and password
for
> R5
> > since R5 is not being challenged by R4.
> >
> > Is that necessary ?
> >
> > BTW I cannot test it cos my ISDN sim isgoing to the bin in 10
seconds.
> >
> > TIA
> >
> > Sam
> >
> >
>

• Next message: Howard C. Berkowitz: "Re: changing spanning tree timers"
• Previous message: Brian McGahan: "RE: lab 8 task 6.3-6.5 bgp installed routes"
• Maybe in reply to: samccie2004@yahoo.co.uk: "IE lab 14 task 4.4-4.8"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Sun Aug 01 2004 - 10:11:46 GMT-3