From: simon hart (simon.hart@btinternet.com)
Date: Wed Mar 09 2005 - 21:35:42 GMT-3
Sorry Marvin,
misunderstood your answer. However it still does not resolve the logic that
if it is enabled by default then both ends would wait for each other to
authenticate, and if that were the case then the circuit would never come up
Simon
-----Original Message-----
From: nobody@groupstudy.com [mailto:nobody@groupstudy.com]On Behalf Of
marvin greenlee
Sent: 10 March 2005 00:25
To: 'simon hart'; Vijaybhasker.Vuppala2@ge.com; ccielab@groupstudy.com
Subject: RE: ppp chap wait [bcc][faked-from] [mx]
I was saying that it is ENABLED by default, at least on the two routers that
I tried it on. Notice that "ppp chap wait" does not show in the config, but
"no ppp chap wait" does. Since the command only shows in the config when
you disable it, it is enabled by default.
Marvin Greenlee, CCIE#12237, CCSI# 30483
Network Learning Inc
marvin@ccbootcamp.com
www.ccbootcamp.com (Cisco Training)
-----Original Message-----
From: simon hart [mailto:simon.hart@btinternet.com]
Sent: Thursday, March 10, 2005 10:43 PM
To: marvin greenlee; Vijaybhasker.Vuppala2@ge.com; ccielab@groupstudy.com
Subject: RE: ppp chap wait [bcc][faked-from] [mx]
So Marvin,
I am correct in assuming that the DocCD is incorrect
http://www.cisco.com/univercd/cc/td/doc/product/software/ios122/122cgcr/fsec
ur_r/faaacr/srfathen.htm#wp1019184
Are there many of these inconsistencies??
Simon
-----Original Message-----
From: nobody@groupstudy.com [mailto:nobody@groupstudy.com]On Behalf Of
marvin greenlee
Sent: 09 March 2005 23:57
To: 'Vijaybhasker.Vuppala2@ge.com'; simon.hart@btinternet.com;
ccielab@groupstudy.com
Subject: RE: ppp chap wait [bcc][faked-from]
If it is disabled by default, it would have to be version specific. I only
see it in the config when I use "no ppp chap wait".
****
R3(config)#int bri1/0
R3(config-if)#no ppp chap wait
R3(config-if)#do show run int bri1/0
Building configuration...
Current configuration : 173 bytes
!
interface BRI1/0
no ip address
encapsulation ppp
dialer pool-member 1
isdn switch-type basic-net3
no ppp chap wait
ppp multilink
ppp multilink links minimum 2
end
R3(config-if)#ppp chap wait
R3(config-if)#do show run int bri1/0
Building configuration...
Current configuration : 155 bytes
!
interface BRI1/0
no ip address
encapsulation ppp
dialer pool-member 1
isdn switch-type basic-net3
ppp multilink
ppp multilink links minimum 2
end
Marvin Greenlee, CCIE#12237, CCSI# 30483
Network Learning Inc
marvin@ccbootcamp.com
www.ccbootcamp.com (Cisco Training)
-----Original Message-----
From: nobody@groupstudy.com [mailto:nobody@groupstudy.com] On Behalf Of
Vijaybhasker.Vuppala2@ge.com
Sent: Wednesday, March 09, 2005 3:23 PM
To: simon.hart@btinternet.com; ccielab@groupstudy.com
Subject: RE: ppp chap wait [bcc][faked-from]
Importance: Low
I think documentation is wrong. It's disabled by default
-----Original Message-----
From: simon hart [mailto:simon.hart@btinternet.com]
Sent: Wednesday, March 09, 2005 5:13 PM
To: Group Study
Subject: ppp chap wait
I am working through the IE Lab workbook and have come across the ppp chap
wait command.
The DocCD states
ppp chap wait
To specify that the router will not authenticate to a peer requesting
Challenge Handshake Authentication Protocol (CHAP) authentication until
after the peer has authenticated itself to the router, use the ppp chap wait
command in interface configuration mode.To allow the router to respond
immediately to an authentication challenge, use the no form of this command.
Defaults
Enabled
Now my question is that if this is enabled by default and you have two ends
of an ISDN link configure for CHAP authentication logic would dictate we
would have a mexican standoff - each end would be waiting for the other to
authenticate. However this clearly does not happen!!
This command really does not make a lot of sense.
Any comments??
Simon
-- No virus found in this outgoing message. Checked by AVG Anti-Virus. Version: 7.0.308 / Virus Database: 266.6.4 - Release Date: 07/03/2005
This archive was generated by hypermail 2.1.4 : Sun Apr 03 2005 - 17:56:44 GMT-3