Presentation is loading. Please wait.

Presentation is loading. Please wait.

Labcourse “Routerlab” Customer Access. Datacenter Phone ExchangePoint of Presence Customer Datacenter The big picture Core Network Phone Network Home.

Similar presentations


Presentation on theme: "Labcourse “Routerlab” Customer Access. Datacenter Phone ExchangePoint of Presence Customer Datacenter The big picture Core Network Phone Network Home."— Presentation transcript:

1 Labcourse “Routerlab” Customer Access

2 Datacenter Phone ExchangePoint of Presence Customer Datacenter The big picture Core Network Phone Network Home Network ATM Network PPP-AC DSLAM Splitter Modem DSL Router Access Router Core Routers

3 Datacenter Phone ExchangePoint of Presence Customer Datacenter Accessing the Net Core Network Home Network ATM Network PPP-AC DSLAM Splitter Modem DSL Router Access Router Core Routers ATM Circuit DSL Connection PPPoE Connection RADIUS Auth. Request IP Data

4 PPP – Point-to-Point Protocol Encapsulates other protocols (tunnel) Enables AAA (authentication, authorization, accounting) Supports auto-configuration We consider IP over PPPoE (PPP over Ethernet)

5 Phases of PPP Link Dead Established successful? Link Establishment Phase Need authentication? Authentication Phase Authentication successful? Network-Layer Protocol Phase Link Termination Phase No Yes

6 PPPoE Frame Dst. Addr Src. Addr Type Data PPPoE Version (4 Bit) Type (4 Bit) Code (1 Byte) Session-ID (2 Byte) Length (2 Byte) PPP Protocol (2 Byte) Payload (variable) Ethernet Frame Always 0x1 0x00: Data 0x07: PADO 0x09: PADI 0x19: PADR 0x65: PADS 0xa7: PADT Announced in PADS Frame, before: 0x0000 Payload Length in Bytes 0x0021: IP 0x8021: IP Control Prot. (IPCP) 0xc021: Link Control Prot. (LCP) 0xc023: Password Auth. Prot. (PAP) 0xc223: Challenge Handshake Auth. Prot. (CHAP) 0x8863: PPPoE Discovery 0x8864: PPPoE Session

7 PPPoE Session Client DSL-AC PPPoE Active Discovery (AD) Initiation: PADI Broadcast Packet, optional: Service-Name PPPoE AD Offer: PADO Service-Name, AC-Name PPPoE AD Request: PADR Service-Name, AC-Name PPPoE AD Session Confirmation: PADS Session-ID PPPoE AD Termination Can be sent by either side If multiple PADO: Choose one PPP Session 1)PPP Session handshake (LCP), including authentication 2)IP configuration (IPCP) 3)IP Session (Payload) Authenticate user and authorize session Record accounting data Set local IP configuration

8 RADIUS “Remote Authentication Dial-In User Service” Central RADIUS Server Provides authentication service for Network Access Servers (NAS) NAS: Every device that a user can use to connect to a network, e.g: PPP-AC, WPA access-point, 802.1x switch

9 PPP Session with RADIUS PPP-AC/NASAuth. Server RADIUS: Access Request Username + Password Write accounting record Client LCP: Conf Request Auth. Proto: PAP RADIUS: Access Accept Attributes: IP Address …. RADIUS: Accounting Start Attributes: IP Address Session ID …. PAP: Auth Ack Username + Password IPCP: Conf Req. IP: IPCP: Conf Reject IP: LCP: Conf Ack Auth. Proto: PAP PAP: Auth Request Username + Password LCP: Terminate Link RADIUS: Accounting Stop Attributes: Session ID Duration,Traffic Volume … Write accounting record

10 Datacenter Phone ExchangePoint of Presence Customer Datacenter Excurse: Other providers Core Network Home Network ATM Network PPP-AC DSLAM Splitter Modem DSL Router Access Router Core Routers Datacenter Core Network Point of Presence PPP-AC Access Router

11 Point of Presence loadgen10X Datacenter Phone Exchange Customer Datacenter The smaller picture Core Network Phone Network Home Network ATM Network PPP-AC DSLAM Splitter Modem DSL Router Access Router Core Routers

12 Point of Presence loadgen10X Customer Datacenter The smaller picture Home Network PPP-AC DSL Router Access Router rj1 Loadgen103 VLAN 102


Download ppt "Labcourse “Routerlab” Customer Access. Datacenter Phone ExchangePoint of Presence Customer Datacenter The big picture Core Network Phone Network Home."

Similar presentations


Ads by Google