Configuring PPPoE

This section describes how to configure the Point-to-Point over Ethernet (PPPoE) client on the Cisco LoRaWAN Gateway.

PPPoE Client Overview

The Point-to-Point over Ethernet (PPPoE) is a network protocol for encapsulating PPP frames inside Ethernet frame. PPPoE combines Ethernet and PPP, to provide an authenticated method of assigning IP addresses to client systems.

The Cisco Wireless Gateway for LoRaWAN can be configured as a PPPoE client, so that a tunnel can be established for the router to access the WAN.

At system initialization, the PPPoE client establishes a session with the access concentrator by exchanging a series of packets. Once the session is established, a PPP link is set up, which includes authentication using Password Authentication protocol (PAP). Once the PPP session is established, each packet is encapsulated in the PPPoE and PPP headers.

Configuring the Dialer Interface

Beginning in privileged EXEC mode, follow these steps to configure the dialer interface:

Procedure

  Command or Action Purpose

Step 1

configure terminal

Enter global configuration mode.

Step 2

interface dialer number

Enter interface configuration mode for the dialer interface.

Step 3

ip address negotiated

Specify that the IP address for a particular interface is obtained via PPP/IPCP address negotiation.

Step 4

ip mtu number

Configure the maximum transmission unit (MTU) of the PPPoE interface. Default is 1492.

number - PPPoE MTU

Step 5

ip tcp adjust-mss number

Configure the Maxitum Segment Size (MSS) of the PPPoE interface. Default is 1412.

number - PPPoE MSS

Step 6

ppp authentication chap

Set the PPP authentication method to Challenge Handshake Authentication Protocol (CHAP).

Step 7

ppp chap hostname <hostname >

Define an interface-specific CHAP hostname.

Step 8

ppp chap password <password >

Define an interface-specific CHAP password.

Step 9

dialer-group name

Assign the dialer interface to a dialer group. This command applies the interesting traffic definition to the interface.

Step 10

dialer-pool name

Specify the dialer pool to use to connect to a specific destination subnetwork.

Step 11

exit

Return to global configuration mode.

Step 12

copy running-config startup-config

(Optional) Save your entries in the configuration file.

Example


config terminal
interface Dialer 1
 ip address negotiated
 dialer-group 1
 ppp authentication chap
 ppp chap hostname alice
 ppp chap password 1234
 dialer-pool 1
 exit

Configuring the Ethernet Interface

Beginning in privileged EXEC mode, follow these steps to configure the Ethernet interface:

Procedure

  Command or Action Purpose

Step 1

configure terminal

Enter global configuration mode.

Step 2

interface FastEthernet number

Enter interface configuration mode for the Ethernet interface.

Step 3

pppoe-client dial-pool-number number

Configure the PPPoE client and specifies the dialer pool.

Step 4

exit

Return to global configuration mode.

Step 5

copy running-config startup-config

(Optional) Save your entries in the configuration file.

Example


config terminal)
interface FastEthernet 0/1
 pppoe-client dial-pool-number 1
 exit

Enabling the PPPoE Service

Beginning in privileged EXEC mode, follow these steps to enable the PPPoE service:

Procedure

  Command or Action Purpose

Step 1

pppoe profile_number

Connect to the PPPoE service. For profile_number, specify the target tunnel profile.

Step 2

copy running-config startup-config

(Optional) Save your entries in the configuration file.

Example


# pppoe 1

Monitoring and Debugging the PPPoE Configuration

Use the following global configuration commands to display the PPPoE session statistics:


#show pppoe session  [status |packets |log ]



#show ip interface pppoe

Use the following global configuration command to debug the PPPoE configuragion:

# [no ] debug pppoe detail

Examples


Gateway#show pppoe session status
pppoe-status: Link is up and running on interface ppp1
ppp1      Link encap:Point-to-Point Protocol
          inet addr:13.13.1.10  P-t-P:13.13.13.1  Mask:255.255.255.255
          UP POINTOPOINT RUNNING NOARP MULTICAST  MTU:1492  Metric:1
          RX packets:310 errors:0 dropped:0 overruns:0 frame:0
          TX packets:439 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:3
          RX bytes:76623 (74.8 KiB)  TX bytes:128214 (125.2 KiB)

Gateway#show pppoe session packets
      IN   PACK VJCOMP  VJUNC  VJERR  |      OUT   PACK VJCOMP  VJUNC NON-VJ
   76623    310      0      0      0  |   128214    439      0      0    439

Gateway#show ip interface PPPoE
PPP1 is up
  Internet address is 13.13.1.10
  Netmask is 255.255.255.255
  Server address is 13.13.13.1
  MTU is 1492 bytes

Gateway#show ip route
Kernel IP routing table
Destination     Gateway         Genmask         Flags Metric Ref    Use Iface
0.0.0.0         0.0.0.0         0.0.0.0         U     0      0        0 ppp1
10.0.3.0        0.0.0.0         255.255.255.0   U     0      0        0 lxcbr0
13.13.13.1      0.0.0.0         255.255.255.255 UH    0      0        0 ppp1

PPPoE Configuration Examples on IXM and IR829

The following is an example of PPPoE client configuration on IXM:


!
interface FastEthernet 0/1
 pppoe-client dial-pool-number 1
 exit
!
interface Dialer 1
 ip address negotiated
 dialer-group 1
 ppp authentication chap
 ppp chap hostname alice
 ppp chap password 1234
 dialer-pool 1
 exit
!
pppoe 1

ipsec enable

The folowing is an example of PPPoE server configuration on IR829:


IR800#show running-config 
*Jul 31 23:55:30.118: %SYS-5-CONFIG_I: Configured from console by console
Building configuration...

Current configuration : 3713 bytes
!
! Last configuration change at 23:55:30 UTC Mon Jul 31 2017
!
version 15.6
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname IR800
!
boot-start-marker
boot system flash:ir800-universalk9-mz.SPA.156-3.M2
boot-end-marker
!
!
!
aaa new-model
!
!
aaa authentication login default local enable
aaa authentication login IKE1_IKE2_AUTHEN_LOCAL local
aaa authorization network IKE1_IKE2_AUTHOR_LOCAL local 
!
!
!
!
!
aaa session-id common
service-module wlan-ap 0 bootimage autonomous
!
ignition off-timer 900
!
ignition undervoltage threshold 9
!
no ignition enable
!
!
!
!
!
!
!
!
!
!         
!


!
!
!
!
no ip domain lookup
ip cef
no ipv6 cef
!
multilink bundle-name authenticated
!
!
!
chat-script lte "" "AT!CALL" TIMEOUT 20 "OK"
!
!
license udi pid IR829GW-LTE-VZ-AK9 sn FTX2124Z04Z
!
!
username cisco privilege 15 password 0 cisco
username alice password 0 1234
!
redundancy
!
!
!
!
!
controller Cellular 0
 lte modem link-recovery rssi onset-threshold -110
 lte modem link-recovery monitor-timer 20
 lte modem link-recovery wait-timer 10
 lte modem link-recovery debounce-count 6
!
! 
!
!
!
!
!
!
!
bba-group pppoe ALTAMEER
 virtual-template 33
!
!
interface Loopback3
 ip address 13.13.13.1 255.255.255.0
!
interface GigabitEthernet0
 no ip address
 shutdown
!
interface GigabitEthernet1
 no ip address
!
interface GigabitEthernet2
 no ip address
!
interface GigabitEthernet3
 no ip address
 pppoe enable group ALTAMEER
!
interface GigabitEthernet4
 switchport access vlan 10
 no ip address
!         
interface Wlan-GigabitEthernet0
 no ip address
!
interface Wpan2
 no ip address
 ieee154 txpower 25
 no ieee154 fec-off
!
interface GigabitEthernet5
 no ip address
 shutdown
 duplex auto
 speed auto
!
interface Cellular0
 no ip address
 encapsulation slip
 dialer in-band
 dialer string lte
!
interface Cellular1
 no ip address
 encapsulation slip
!
interface Virtual-Template33
 mtu 1492
 ip unnumbered Loopback3
 ip nat inside
 ip virtual-reassembly in
 peer default ip address pool ALTAMEER
 ppp authentication chap
!
interface wlan-ap0
 no ip address
 shutdown
!
interface Vlan1
 no ip address
 ip nat outside
 ip virtual-reassembly in
 pppoe enable group ALTAMEER
!
interface Vlan10
 ip address 172.27.170.119 255.255.255.128
 ip nat outside
 ip virtual-reassembly in
!
interface Async0
 no ip address
 encapsulation scada
!
interface Async1
 no ip address
 encapsulation scada
!
!
ip local pool ALTAMEER 13.13.1.10 13.13.1.20
ip forward-protocol nd
!
no ip http server
no ip http secure-server
!
ip nat inside source list 10 interface Vlan10 overload
ip route 0.0.0.0 0.0.0.0 Vlan10 172.27.170.1
ip ssh server algorithm encryption aes128-ctr aes192-ctr aes256-ctr
ip ssh client algorithm encryption aes128-ctr aes192-ctr aes256-ctr
!
ipv6 ioam timestamp
!         
!
access-list 10 permit any
!
!
!
control-plane
!
!
!
!
line con 0
 exec-timeout 0 0
 stopbits 1
line 1 2
 stopbits 1
line 3
 script dialer lte
 modem InOut
 no exec
 transport preferred lat pad telnet rlogin lapb-ta mop udptn v120 ssh
 transport input all
 transport output all
 rxspeed 2400000
 txspeed 153000
line 4
 no activation-character
 no exec
 transport preferred none
 transport input all
 transport output lat pad telnet rlogin lapb-ta mop udptn v120 ssh
line 8
 no exec
 transport preferred lat pad telnet rlogin lapb-ta mop udptn v120 ssh
 transport output lat pad telnet rlogin lapb-ta mop udptn v120 ssh
line 1/3 1/6
 transport preferred none
 transport output none
 stopbits 1
line vty 0 4
 exec-timeout 0 0
 privilege level 15
 password cisco
 transport input all
 transport output all
!
no scheduler max-task-time
iox client enable interface GigabitEthernet5
!
!
!
!
!
!
end