BASIC PPPOE CONFIGURE

[PPPOE]
+ PPPOE TOPO
- Client(PC) -> SwS -> Terminator(PPPOE_Server) -> AUTHENTICATION SERVER
- Client(PC) -> Modem -> NetworkClound -> Terminator(PPPOE_Server) -> AUTHENTICATION SERVER
- Client(PC) -> ROUTER -> ATM-Network -> Terminator(PPPOE_Server) -> AUTHENTICATION SERVER

+ PPPOE THOERIES
- PPPOE used at Multi-Access Network & Broadcast Network to provide Authentication, Authorization, Accounting.
- Protocol Layer: [FrameHeader|PPP-Header|ESP|FCS]
- [TYPE] Field of Ethernet Frame: [x8863] for Discover stage, [x8864] for session stage
+ PPPOE Period(Process)
- Discovery Stage: Find AC(Access Concentrator),and select one AC to create sessions,
; S1,Send Broadcast frame to find AC
; S2,AC send back an Ack frame to indicate it's a AC,the frame include AC's MAC
; S2,Client select a AC to start session stage
- Session Stage

+ PPPOE Frame
- PADI(Initial): Used at discovery stage
- PADO(Offer): Used to offer a AC's information
- PADR(Request): Used at discovery
- PADS: Session Ack
- PADT: Session Terminate

+ PPPOE Server
- Virtual-Template: Used by PPPOE Server, The configuration of Virtual-Access will inherite from it,normally should be configured manually.some valuable configure is `ip address`,`peer default ip address pool pppoe`,`encap method`,`authentication`.
- Virtual-Access: If one user is dialed in, one virtual access will be created, that is virtual-access is used for per session, normally created by Sys,its configure should inherit from virtual-template.
- PPP ENCAP: That determine what (PPP) sould be adapted by clients,and the PPPOE configure should be applied to the virtual-template so that every user should be use this method to access,and all of its properties should be applied to virtual-template,too.
- BBA-GROUP: USE for Bandwith Access Service(BAS), Allocation of virtual-template is done at this view, you can define some other properties for BAS template, used for group-name to identify multiple service clusters.
- AAA: Your scheme to authentication,authorization,accounting for PPPOE service
- IP-POOL: Used by virtual-template,to assign address for PPPOE client

+ PPPOE Client
- Dialer: vitual interface for dialing,such as pppoe,isdn,pstn,etc.used to set ENCAP method,address asignment.
- Dial-Pool: used for add associations between dialer and interface
- BBA-Group: not required to configure,Used for service
- Virtual-Access: As PPPOE-Server

+ Configure PPPOE Server
- Configure IP-Address-Pool for PPPOE201(S1)
! Sys(config)#ip local pool PPPOE201 202.115.201.2 202.115.201.254

- Configure AAA for PPPOE/PPP(S2)
! Sys(config)#aaa new-model
! Sys(config)#aaa authentication ppp default local ;Local database
! Sys(config)#username Sys password 0 Sys ;Level-0 user,local,no privilage,for remote only

- Configure Virtual-Template for VPDN(BBA-GROUP)(S3)
! Sys(config)#int virtual-template 1
! Sys(config-if)#ip address 202.115.201.1 255.255.255.0 ;PPPOE Server IP
! Sys(config-if)#ip unnumbered lo 201 ;IP unnumbered
! Sys(config-if)#peer default ip address pool PPPOE201 ;PPPOE client address
! Sys(config-if)#encap ppp ;ENCAP PPP
! Sys(config-if)#ppp chap ;Need authentication when calling,Client donot issue this command

- Configure VPDN/BBA-GROUP(S4)
! Sys(config)#vpdn enable
! Sys(config)#bba-group <global|G_NAME>
! Sys(config-bba-group)#virtual-template 1 ;Bind virtual-template(VT)
! Sys(config-bba-group)#sessions per-mac limit 1 ;Limit one mac-address to one session
----
; Following are the tranditional way to configure
----
! Sys(config)#vpdn-group Sys ;Sys is the group name
! Sys(config-vpdn)#Accept-dialin
! Sys(config-vpdn-acc-in)#virtual-template 1
! Sys(config-vpdn-acc-in)#!Other properties

- Enable pppoe incoming interface to processing PPPOE frame
! Sys(config)#interface F0/0
! Sys(config-if)#pppoe enable group <global|G_name>
! Sys(config-if)#no shutdown

- Check PPPOE state
! Sys#show pppoe summary ;A summary
! Sys#show pppoe session <CR|?> ;Show pppoe sessions
! Sys#show pppoe relay context all
- Check PPP state
! Sys#deb ppp authentication

+ Configure PPPOE Client(S1)
- Enable PPPOE/VPDN
! PPPOE(config)#int f0/0
! PPPOE(config-if)#pppoe enable
! PPPOE(config-if)#pppoe-client dial-pool-number 1 ;Assoc to dial-pool
! PPPOE(config-if)#no sh
- Enable VirtualDialer,As the Virtual-Template for PPPOE Server(S2)
! PPPOE(config)#int dialer 0
! PPPOE(config-if)#dialer pool 1
! PPPOE(config-if)#encap ppp
! PPPOE(config-if)#ppp chap hostname EUID ;no `ppp authentication chap` is require,its server side settings, means that incoming call require authentication,its 1-Way authentication.
! PPPOE(config-if)#ppp chap password EPASS
! PPPOE(config-if)#ip address nego ;Automatically get ip address from pppoe server

+ Configure AT WindowsXP client
; Create a connection `Bandwith Access Connection`,and input user and password that isp provide to connect.