พอดีหัวหน้าอยากได้ให้ Cisco router สามารถทำเป็น pppoe server ใน LAN แล้วให้ user ใน LAN connect ผ่าน PPPoE ก่อนออกไป internet โดยใช้ username/password จาก radius server.
network diagram..
{internet cloud}<----->[ g0/0 Cisco2800 g0/1 ]<----->[ PC .(pppoe client) ]
aaa authentication login PPPoE group radius local
aaa authentication ppp PPPoE group radius local
aaa authorization network PPPoE group radius local
aaa accounting exec PPPoE start-stop group radius
aaa accounting network PPPoE start-stop group radius
bba-group pppoe global
virtual-template 1
sessions auto cleanup
interface GigabitEthernet0/0
description *** public internet ***
ip address x.x.x.x 255.255.255.252
load-interval 30
duplex auto
speed auto
ip nat outside
end
interface GigabitEthernet0/1
description *** PPPoE ***
ip address 192.168.222.1 255.255.255.0
load-interval 30
duplex auto
speed auto
pppoe enable group global
end
interface Virtual-Template1
ip unnumbered GigabitEthernet0/0
ip nat inside
ip virtual-reassembly
peer default ip address pool PPPoE_POOL
ppp authentication pap PPPoE
ppp authorization PPPoE
ppp accounting PPPoE
!
ip local pool PPPoE_POOL 192.168.234.1 192.168.234.254
ip nat inside source list 1 interface GigabitEthernet0/0 overload
radius-server host 192.168.222.2 key cisco
access-list 1 permit 192.168.234.0 0.0.0.255
No comments:
Post a Comment