41.4. Example of POEAC configuration

Consider the following example: suppose that PoeAC clients are connected through a wireless link.

[Tip]Tip

Interesting chapter: Section 68.13.3, “How to configure a RAS using PPPoE connections with an Ethernet/WiFi network”.

41.4.1. Configuring the POEAC resource

Configure the maximum number of PPPoE sessions with a value equal to the number of users which you want to enable (for example 10 users), configure the lower Ethernet resource (in this case: Eth-2) and give a name to the Access Concentrator.

[11:43:00] ABILIS_CPX:s p poeac-1 max-ipres:10 acname:wlan ethres:eth-2

COMMAND EXECUTED

[11:43:03] ABILIS_CPX:d p poeac-1

RES:PoeAc-1 - Not Saved (SAVE CONF), Not Refreshed (INIT) ---------------------
       ------------------------------------------------------------------------
Run    DESCR:
       LOG:DS        ACT:YES  ethres:Eth-2       max-ipres:10   ipres-rxbuf:2
       ACNAME:wlan                               
       EMPTY-EQ-ANY:NO    ALL-SERVICES-OFFER:NO
       TCP-MSS-CLAMP:YES  TCP-MSS-VALUE:1414
      
RES:Eth-2 ---------------------------------------------------------------------
Run    DESCR:
       LOG:DS            MODE:AUTO         DUPLEX:HALF   
       dma-rxbuf:250     dma-txbuf:25      max-vlans:25      
       ip-rxbuf:25       arp-rxbuf:5       pppoed-rxbuf:5    pppoes-rxbuf:25

41.4.2. Configuring the IPRTR resource for DNS distribution to the clients

Configuring the PPP-DNS-PRI and PPP-DNS-SEC parameters in the IPRTR resource is needed to redistribute the IP addresses of the DNS servers to the clients.

[12:01:24] ABILIS_CPX:s p iprtr PPP-DNS-PRI:62.94.0.1 PPP-DNS-SEC:62.94.0.2

COMMAND EXECUTED

[12:11:57] ABILIS_CPX:d p iprtr

RES:Iprtr ---------------------------------------------------------------------
Run    DESCR:IP_Router_general_properties
       - General --------------------------------------------------------------
       R-ID:AUTO (192.168.029.254)   
       maxroute:500       DFTTTL:255          ps:2048       
       DEF-LOCAL-AD:0     DEF-STATIC-AD:1     DEF-OSPF-AD:110   DEF-RIP-AD:120
       pvc:0              bsvc:0              LINKS:6           virtual:0
       - IP Access List -------------------------------------------------------
       ACL:YES                ACLBYPASS:#              
       COS:ENABLED            COSDFT:NORMAL     
       COSBALANCE:NO          NORMRATE:50            LOWRATE:50   
       - IPCOS to 802.1q (VLAN) priority --------------------------------------
       LOW:1                  NORMAL:0               HIGH:5    
       - Ppp-Dns --------------------------------------------------------------
       PPP-DNS-PRI:062.094.000.001  PPP-DNS-SEC:062.094.000.002

41.4.3. Activating and configuring the IP over PPP resources

Set act as many IP resources of type PPP as the number of users to manage with the command a res:ip-n subtype:ppp.

[12:11:59] ABILIS_CPX:a res:ip-101 subtype:ppp

COMMAND EXECUTED
[Caution]Caution

To set act the changes made, a save conf and an Abilis restart are needed (i.e. with warm start command).

[12:11:59] ABILIS_CPX:d p ip-101

RES:Ip-101 - IP over PPP (PPP) ------------------------------------------------
       - IP over PPP (PPP) ----------------------------------------------------
Run    DESCR:
       OPSTATE:UP             LOG:NO                 STATE-DETECT:NORMAL
       LOWRES:NONE                                   
       IPADD:RETRIEVE                                NEIGH:RETRIEVE
       REDIS:EXT     HIDE:NO         RP:NONE            IPSEC:NO       VRRP:NO
       NAT:NO                        DIFFSERV:NO        DDNS:NO
       OUTBUF:100    OUTQUEUE:FAIR   MTU:1500           
       OUTSPL:NO     
       INBUF:0                       mru:1500           SRCV:NO
       - TRFA section ---------------------------------------------------------
       TRFA:NO      
       - Ppp ------------------------------------------------------------------
       PPPLOG:DS        NRTY3:3         PPP-ENC:RAW-PPP           RADIUS:NO
       - Tcp-MSS/Lcp/IpCp -----------------------------------------------------
       TCP-MSS-CLAMP:NO                                           DNS:NO
       - Authentication -------------------------------------------------------
       USERNAME:
       PASSWORD:                                  LOCAL:CHAP,PAP
       SERVNAME:                                  REMOTE:NONE
       REPEAT:0

The most important parameters are:

LOWRES

Lower resource (must be the correspondent PoEAC resource).

IPADD

IP address assigned to the PPP Server.

NEIGH

IP address assigned to the PPP Client.

NAT

NAT usage [NO; INSIDE; OUTSIDE].

LOCAL

Client Authentication protocol.

REMOTE

Server Authentication protocol.

TCP-MSS-CLAMP

It decides whether to perform TCP MSS clamping; if set, forces PPP to change value of Maximum Segment Size in all TCP packets to one equal or lower than set with TCP-MSS-VALUE option to avoid certain problems with PPP over Ethernet “black hole”. Also can be used to reduce link latency at the cost of some bandwidth loss.

DNS

It estabilishes the DNS addresses negotiation [NO: no DNS address negotiation is performed; PROVIDE: PPP can provide DNS addresses to a remote host; RETRIEVE: PPP requests DNS addresses from a remote host].

SERVICENAME

PPP over Ethernet Service name: name under which this link can be requested from the client. If the client specifies a certain ServiceName, Server answers only if it has link with tha exactly name. If Client specifies no name, it means any line is acceptable.

According to previous example, configure the IP over PPP resources with the following features:

  • LOWRES resource: POEAC-1;

  • server IP address: 192.168.10.201;

  • client IP address: 192.168.10.101;

  • service name: user_1;

  • enable TCP MSS clamping;

  • enable DNS negotiation;

[12:48:09] ABILIS_CPX:s p ip-101 lowres:poeac-1 ipadd:192.168.10.201 neigh:192.168.10.101 nat:inside

COMMAND EXECUTED

[14:46:44] ABILIS_CPX:s p ip-101 servicename:user_1 tcp-mss-clamp:yes dns:provide local:none remote:chap

COMMAND EXECUTED

[14:46:50] ABILIS_CPX:d p ip-101

RES:Ip-101 - Not Saved (SAVE CONF), Not Refreshed (INIT) ----------------------
       - IP over PPP (PPP) ----------------------------------------------------
Run    DESCR:
       OPSTATE:UP             LOG:NO                 STATE-DETECT:NORMAL
       LOWRES:PoeAc-1                                
       IPADD:192.168.010.201  MASK:255.255.255.255   NEIGH:192.168.010.101
       REDIS:EXT     HIDE:NO         RP:NONE            IPSEC:NO       VRRP:NO
       NAT:INSIDE    UPNP:NO         DIFFSERV:NO        DDNS:NO
       OUTBUF:100    OUTQUEUE:FAIR   MTU:1500           
       OUTSPL:NO     
       INBUF:0                       mru:1500           SRCV:NO
       - TRFA section ---------------------------------------------------------
       TRFA:NO      
       - Ppp ------------------------------------------------------------------
       PPPLOG:DS        NRTY3:3         PPP-ENC:RAW-PPP           RADIUS:NO
       SERVICENAME:user_1
       - Tcp-MSS/Lcp/IpCp -----------------------------------------------------
       TCP-MSS-CLAMP:YES                TCP-MSS-VALUE:1414        DNS:PROVIDE
       - Authentication -------------------------------------------------------
       USERNAME:
       PASSWORD:                                  LOCAL:NONE
       SERVNAME:                                  REMOTE:CHAP
       REPEAT:0
[Caution]Caution

To set act the changes made, use init res:ip-101 command followed by init ipr and save the configuration with save conf command to make the changes permanent.

Repeat the same operations for each user by changing the number of the IP resource (i.e. IP-102, IP-103…).

41.4.4. Activating and configuring the PPP users

Add an entry in the Users table for each IP resource which you have activated.

[15:53:42] ABILIS_CPX:a user:user_1 ppp:yes pwd:user_1 ppp-res:ip-101

COMMAND EXECUTED

[15:54:06] ABILIS_CPX:d user:user_1

- Not Saved (SAVE CONF) -------------------------------------------------------
Parameter:          | Value:
--------------------+----------------------------------------------------------
USER:                 user_1
REAL-NAME:            user_1
ID:                   8             <Read Only>
PWD:                  ***
ACT:                  YES
GROUP:                
CTIP:                 #
CLUS:                 #
ADDRBOOK-SYNC:        SYS           
ADDRBOOK-NUMBER:      AUTO          
ADDRBOOK-OUTDIAL:     NONE          
ADDRBOOK-PUB-ENABLED: SYS           
OPC-ROLE:             USER
OPC-VIEW:             *
OPC-HIDE-NUMBERS:     NO
OPC-MONITOR:          NONE
OPC-PRIVACY:          NO
CHAT:                 NO    
CHAT-USER:            SYS
CHAT-PWD:             SYS
PPP:                  YES
PPP-AUTH:             CHAP
PPP-RES:              Ip-101
PPP-NEIGH:            #
PPP-MASK:             255.255.255.255
PPP-ROUTE:            #
-------------------------------------------------------------------------------

The command must be repeated for all other users.

The connection to the Access Concentrator can be done by using standard Windows PPPoE client or common routers that support this protocol.