Re: CHAP with HDLC ???

From: kuldip singh (dipa.singh@gmail.com)
Date: Tue May 17 2005 - 08:37:53 GMT-3

• Next message: Golia, Jeff: "RE: Lab Results for Friday in RTP"
• Previous message: Keane, James: "RE: Dialer watch scenario -"
• Maybe in reply to: Hai Minh: "CHAP with HDLC ???"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Hi Minah,
              What have you got configured on the remote router ? Is
it dialer interface on the remote router or Multi-point ? You need to
check debug ppp negotiation and if PAP does not work you will see in
the debug the router was offered to negotiate with chap. Since the
dialer interface is bound to the BRI0/0 interface it takes the
encapsulation from the dialer interface. So you can have the BRI0/0
interface configured with HDLC but the dialer interface with PPP and it would
still work.

But if you debug ppp neg you will see how authentication is working.

HTH

On 5/17/05, Hai Minh <minh@ipmac.com.vn> wrote:
> Hi group,
>
> I'm testing ISDN and I found something strange.
> On BRI, I set the encapsulation type is HDLC, and on interface Dialer, I set
> PPP. I use PAP authentication, but I think PAP won't work because on the
> encapsulation on the physical interface is HDCL.
> Here is my configuration.
>
> R6
> interface BRI0
> no ip address
> dialer pool-member 1
> isdn switch-type basic-ni
> isdn spid1 66612345
> isdn spid2 66654321
> cdapi buffers regular 0
> cdapi buffers raw 0
> cdapi buffers large 0
> !
> interface Dialer1
> ip address 10.1.68.6 255.255.255.0
> encapsulation ppp
> dialer pool 1
> dialer string 888111
> dialer-group 1
> ppp authentication pap
> !
> But when I try to connect, it still authenticates the remote router. And the
> biggest surprise is it uses CHAP (see the debug below). It should not
> authenticate. Then I reconfigure PPP on physical interface and connect again,
> this time it authenticate by PAP as I wish.
> I don't know how it can use CHAP to authenticate when the encapsulation type
> is HDCL on the physical interface. I check on DocCD but I can't find any word
> talk about it. Is CHAP the default encapsulation type when I configure like
> that??
> Did anyone catch this problem?
>
> R6#debug ppp authen
> PPP authentication debugging is on
> R6#ping 10.1.68.8
>
> Type escape sequence to abort.
> Sending 5, 100-byte ICMP Echos to 10.1.68.8, timeout is 2 seconds:
>
> 05:33:45: %LINK-3-UPDOWN: Interface BRI0:1, changed state to up
> 05:33:45: BR0:1 PPP: Treating connection as a callout
> 05:33:45: %DIALER-6-BIND: Interface BR0:1 bound to profile Di1.
> 05:33:45: BR0:1 PPP: Treating connection as a callout
> 05:33:45: BR0:1 CHAP: O CHALLENGE id 9 len 23 from "R6"
> 05:33:45: BR0:1 CHAP: I RESPONSE id 9 len 23 from "R8"
> 05:33:45: BR0:1 CHAP: O SUCCESS id 9 len 4!!!!
> Success rate is 80 percent (4/5), round-trip min/avg/max = 36/36/36 ms
> R6#
> 05:33:46: %LINEPROTO-5-UPDOWN: Line protocol on Interface BRI0:1, changed
> state to up
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html

• Next message: Golia, Jeff: "RE: Lab Results for Friday in RTP"
• Previous message: Keane, James: "RE: Dialer watch scenario -"
• Maybe in reply to: Hai Minh: "CHAP with HDLC ???"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Fri Jun 03 2005 - 10:11:58 GMT-3