Labcourse “Routerlab”

Slides:



Advertisements
Similar presentations
PPPoE Last Update Copyright Kenneth M. Chipps Ph.D. 1.
Advertisements

ADSL Systems - An Overview Praveen Reguraman InterOperability Lab University of New Hampshire 1999.
McGraw-Hill©The McGraw-Hill Companies, Inc., 2004 Chapter 12 Point-to-Point Access: PPP.
Rick Graziani PPP authentication protocols 1. Link establishment - (LCPs) 2. Authentication - Optional (LCPs) 3. Link quality determination.
Point-to-Point Protocol (PPP) ผศ. ดร. อนันต์ ผลเพิ่ม Asst.Prof.Anan Phonphoem, Ph.D. Computer Engineering.
S4C4 PPP. Protocols Point to Point Protocol Link Control Protocol Network Control Program Password Authentication Protocol Challenge Handshake Authentication.
1 Data Link Protocols Relates to Lab 2. This module covers data link layer issues, such as local area networks (LANs) and point-to-point links, Ethernet,
Point-to-Point Protocol
Gursharan Singh Tatla SLIP and PPP 27-Mar
Layer 2 Tunneling Protocol (L2TP)
Microsoft Windows Server 2003 TCP/IP Protocols and Services Technical Reference Slide: 1 Lesson 4 Point to Point Protocol (PPP)
DSL Access Architectures and Protocols. xDSL Architecture.
1 Data Communications Point-to-Point Protocol (PPP)
© 2006 Cisco Systems, Inc. All rights reserved. Implementing Secure Converged Wide Area Networks (ISCW) Module 2: Teleworker Connectivity.
Semester 4 - Chapter 4 – PPP WAN connections are controlled by protocols In a LAN environment, in order to move data between any two nodes or routers two.
Point to Point Protocol Operation. Point to Point Protocol Protocol Layers of PPP –Physical Layer –Data Link Layer – HDLC derivative –Other protocols.
PPP (Point to Point protocol).  On WAN connection, the protocol depends on the WAN technology and communicating equipment:  Examples:  HDLC –  The.
K. Salah 1 Chapter 12 Point-to-Point Access: PPP.
Chapter 16 AAA. AAA Components  AAA server –Authenticates users accessing a device or network –Authorizes user to perform specific activities –Performs.
PPP Protocol PPP Stack -Establish a link (Link Control Protocol) -Authenticate Parties involved (Authentication Protocols) -Carry Network Layer (Network.
Example Data Link Protocols Quick review Reference Models? Layers? Flow Control? Bit stuffing? Connection Oriented? Synchronous transmission?
Chapter 18 RADIUS. RADIUS  Remote Authentication Dial-In User Service  Protocol used for communication between NAS and AAA server  Supports authentication,
Remote Networking Architectures
Point-to-Point Protocol (PPP) Security Connecting to remote access servers (RASs) PPP authentication PPP confidentiality Point-to-Point Tunneling Protocol.
As first introduced in Chapter 2, “Wide Area Network (WAN) Technologies,” PPP is a stan- dard for using point-to-point network links that provides the.
Point-to-Point Access: PPP. In a network, two devices can be connected by a dedicated link or a shared link. In the first case, the link can be used by.
© 2006 Cisco Systems, Inc. All rights reserved.Cisco PublicITE I Chapter 6 1 Point-to-Point Protocol (PPP) Accessing the WAN – Chapter 2.
 It defines the format of the frame to be exchanged between devices.  It defines how two devices can negotiate the establishment of the link and the.
12-Sep-15 Virtual Private Network. Why the need To transmit files securely without disclosing sensitive information to others in the Internet.
Robert E. Meyers CCNA, CCAI Youngstown State University Cisco Regional Academy Instructor Cisco Networking Academy Program Semester 4, v Chapter.
© 2006 Cisco Systems, Inc. All rights reserved.Cisco PublicITE I Chapter 6 1 Point-to-Point Protocol (PPP) Accessing the WAN – Chapter 2.
CCNA Guide to Cisco Networking Fundamentals Fourth Edition
Wide Area Networks(WANs) Lecture Week 2. Point-to-Point Protocol (PPP) Accessing the WAN.
Copyright Kenneth M. Chipps Ph.D. PPP Last Update
Point to Point Protocol
Access Protocols PPP vs. DHCP Chapter 5. Overview PPP DHCP User identities Assignment of IP addresses Assignment of other parameters.
1 Chapter 8 Copyright 2003 Prentice-Hall Cryptographic Systems: SSL/TLS, VPNs, and Kerberos.
Point-to-Point Access: PPP PPP Between Routers  Used for Point-to-Point Connections only  Used as data link control (encapsulates network layer.
VIRTUAL PRIVATE NETWORK By: Tammy Be Khoa Kieu Stephen Tran Michael Tse.
Network access security methods Unit objective Explain the methods of ensuring network access security Explain methods of user authentication.
Lesson 1: Local Area Network (LAN) Technologies LAN encapsulations Ethernet Token Ring FDDI IEEE
Computer Networks Module 3: Data Link Layer (Framing) Dr. Vikram Shete St. Francis Institute of Technology.
Prepared By: Dr. Mohamed Abdeldayem Reference: Chapter 24 Wade Edwards, CCNP Complete Study Guide, Experiment 12 Configuring PPP on a serial link.
4 Semester 4 CHAPTER 4 REVIEW JEOPARDY S2C04 Jeopardy Review.
12. Point-to-Point Access: PPP
Chapter 11 Data Link Control
Wide Area Networks (WAN) Terms that are commonly used by service providers: Customer premises equipment (CPE) Equipment that’s owned by the subscriber.
© 2006 Cisco Systems, Inc. All rights reserved.Cisco PublicITE I Chapter 6 1 Services in a Converged WAN Accessing the WAN – Chapter 1.
PPP Configuration.
Point to Point connections
Data Link Protocols Relates to Lab 2.
Point-Point Protocol (PPP) by William F. Widulski.
Point-to-Point Protocol (PPP)
Chapter 11 Data Link Control (DLC)
PPP Protocol.
Virtual Private Networks
Lesson 6 Point to Point Protocol
Chapter 11 - Part 2 Data Link Control.
PPP – Point to Point Protocol
PPP PROTOCOL The First semester
ZyXEL Communications Corporation
PPPoE Internet Point to Point Protocol over Ethernet
Point-to-Point Protocol (PPP)
Point-to-Point Protocol (PPP)
Point-to-Point Access:
Point-to-Point Access:
Point-to-Point Protocol (PPP)
Point-to-Point Protocol (PPP)
Point-to-Point Access:
Data Link Control (DLC) Services
Presentation transcript:

Labcourse “Routerlab” Customer Access

The big picture Phone Network Phone Exchange Point of Presence Core Network ATM Network PPP-AC DSLAM Core Routers Access Router DSL Router Customer Datacenter Datacenter Modem Splitter Home Network

Accessing the Net PPPoE Connection ATM Circuit IP Data Phone Exchange Point of Presence Core Network ATM Network PPP-AC DSLAM Core Routers Access Router DSL Connection DSL Router Customer Datacenter Datacenter Modem Big picture, real network… Animation: Setup ATM circuit between DSLAM and PPP-AC Setup DSL Link, modem synchronization Dial-up: Setup PPP Connection 3a) PPP-AC hands over authentication data to RADIUS Server during PPP Handshake 4) IP Data possible Splitter RADIUS Auth. Request Home Network

PPP – Point-to-Point Protocol Encapsulates other protocols (tunnel) Enables AAA (authentication, authorization, accounting) Supports auto-configuration We consider IP over PPPoE (PPP over Ethernet)

Phases of PPP No Link Yes Authentication Link Establishment Yes Phase Established successful? Need authentication? Link Establishment Phase Authentication Phase Yes Link Dead Yes No Phases of a PPP Connection, Start at Link-DEAD. Authentication is optional Authentication successful? Link Termination Phase Network-Layer Protocol Phase Yes No

PPPoE Frame Ethernet Frame Dst. Addr Src. Addr Type PPPoE Data 0x8863: PPPoE Discovery 0x8864: PPPoE Session Ethernet Frame Data Dst. Addr Src. Addr Type PPPoE 0x00: Data 0x07: PADO 0x09: PADI 0x19: PADR 0x65: PADS 0xa7: PADT Always 0x1 Always 0x1 Announced in PADS Frame, before: 0x0000 Version (4 Bit) Type (4 Bit) Code (1 Byte) Session-ID (2 Byte) Length (2 Byte) PPP Protocol (2 Byte) Layout of a PPPoE Frame: Animation: Contents of Fields appear Payload Length in Bytes 0x0021: IP 0x8021: IP Control Prot. (IPCP) 0xc021: Link Control Prot. (LCP) 0xc023: Password Auth. Prot. (PAP) 0xc223: Challenge Handshake Auth. Prot. (CHAP) Payload (variable)

PPPoE Session DSL-AC Client PPPoE Active Discovery (AD) Initiation: PADI Broadcast Packet, optional: Service-Name PPPoE AD Offer: PADO Service-Name, AC-Name If multiple PADO: Choose one PPPoE AD Request: PADR Service-Name, AC-Name PPPoE AD Session Confirmation: PADS Session-ID PPP Session PPP Session handshake (LCP), including authentication IP configuration (IPCP) IP Session (Payload) Set local IP configuration Authenticate user and authorize session PPPoE AD Termination Can be sent by either side Record accounting data

RADIUS “Remote Authentication Dial-In User Service” Central RADIUS Server Provides authentication service for Network Access Servers (NAS) NAS: Every device that a user can use to connect to a network, e.g: PPP-AC, WPA access-point, 802.1x switch

PPP Session with RADIUS Client PPP-AC/NAS Auth. Server LCP: Conf Request Auth. Proto: PAP LCP: Conf Ack Auth. Proto: PAP RADIUS: Access Request Username + Password PAP: Auth Request Username + Password RADIUS: Access Accept Attributes: IP Address …. PAP: Auth Ack Username + Password IPCP: Conf Req. IP: 0.0.0.0 RADIUS: Accounting Start Attributes: IP Address Session ID …. Sample PPP Session. Note the IPCP Conf Reject: Server rejects IP “0.0.0.0” and proposes the real one. IPCP: Conf Reject IP: 1.2.3.4 Write accounting record RADIUS: Accounting Stop Attributes: Session ID Duration,Traffic Volume … LCP: Terminate Link Write accounting record

Excurse: Other providers Point of Presence Datacenter Core Network PPP-AC Access Router Phone Exchange Point of Presence Core Network ATM Network First: Reseller: Setup own RADIUS server, use complete infrastructure otherwise Own Core: Route some traffic though own core Own Core2: Route all traffic through own core, get IP directly from PoP Own PoP: Build own PoP. Switch ATM Circuit from DSLAM to own PPP-AC Colocate DSLAM: Setup own DSLAM in Phone Exchange, rewire phoneline to that DSLAM Not shown: own Phoneline PPP-AC DSLAM Core Routers Access Router DSL Router Customer Datacenter Datacenter Modem Splitter Home Network

The smaller picture Phone Network Point of Presence loadgen10X Phone Exchange Point of Presence Core Network ATM Network PPP-AC DSLAM Core Routers Access Router DSL Router Customer Datacenter Datacenter Modem Going from the big picture to the real routerlab configuration No phones, no phone network No DSLAM, No Modem, No ATM network, direct connection from DSL Router to PPP-AC Data-Center simplified: Just one loadgen acting as webserver No CoreNetwork: this has been done before. 5 RADIUS server installed on the same machine as the PPP-AC Splitter Home Network

The smaller picture Point of Presence loadgen10X rj1 PPP-AC Access Router DSL Router Customer Datacenter Loadgen103 VLAN 102 Home Network

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com Inc. All rights reserved.