4 ppp
TRANSCRIPT
8/6/2019 4 PPP
http://slidepdf.com/reader/full/4-ppp 1/21
PHN 4:PHN 4: Thit lpThit lp ktkt niniWAN vi PPPWAN vi PPP
8/6/2019 4 PPP
http://slidepdf.com/reader/full/4-ppp 2/21
WANWAN
ServiceProvider
� WANs kt ni nhiu site
� S yêu cu kt ni khác nhau tùy thuc vào yêu cuca khách hàng và chi phi
8/6/2019 4 PPP
http://slidepdf.com/reader/full/4-ppp 3/21
Leased Lineng b serial
Telephone
CompanyCircuit-switched
Bt ng b serial,
ISDN L p 1
Service
Provider Packet-switched
ng b serial
CácCác loiloi ktkt nini WAN:WAN: L pL p 11
8/6/2019 4 PPP
http://slidepdf.com/reader/full/4-ppp 4/21
K t ni Serial dng im-imK t ni Serial dng im-im
Các kt ni Router
Các kt ni mng tiCSU/DSU
EIA/TIA-232 EIA/TIA-449 EIA-530V.35 X.21
CSU/DSU
Thit b ucui ca user
ServiceProvider
DTE
DCE
8/6/2019 4 PPP
http://slidepdf.com/reader/full/4-ppp 5/21
Leased Line
Circuit-switched
PPP, SLIP, HDLC
HDLC, PPP, SLIP
Packet-switched
X.25, Frame Relay, ATM
CácCác giaogiao thcthc óngóng góigói caca WAN:WAN:L pL p 22
Telephone
Company
Service
Provider
8/6/2019 4 PPP
http://slidepdf.com/reader/full/4-ppp 6/21
Flag Address Control Data FCS Flag
HDLC
� Cung cp ch mt giao thc môi trng
Flag Address Control Proprietary Data FCS Flag
Cisco HDLC
K hungK hung HDLCHDLC
�
HDLC ca Cisco có mt vùng d liu c trng cung cpnhiu giao thc môi trng
8/6/2019 4 PPP
http://slidepdf.com/reader/full/4-ppp 7/21
LnhLnh trongtrong HDLCHDLC
Router(config-if)#encapsulation hdlc
�
Bt tính nng óng gói ca HDLC� HDLC là dng óng gói mc nh trên cng ng b
8/6/2019 4 PPP
http://slidepdf.com/reader/full/4-ppp 8/21
óng gói PPPTCP/IP
Novell IPXAppleTalk
Nhiu giao thc óng gói dùng NCPs trong PPP
� PPP có th mang gói tin t mt vài b giao thc dùng Network Control Programs
� PPP iu khin thit lp ca mt s la chn lin kt dùng LCP
Liên kt thit lp và iu khin dùng LCP trong PPP
TngTng quanquan vv PPPPPP
8/6/2019 4 PPP
http://slidepdf.com/reader/full/4-ppp 9/21
Synchronous or AsynchronousPhysical Media
Link Control Protocol
Authentication, other options
Network Control ProtocolPPP
Data Link Layer
PhysicalLayer
Network
Layer
IPCP IPXCP Many Others
IP IPX Layer 3 Protocols
ThànhThành phn phn caca PPPPPP
yPPP²Mt liên kt d liu v i dch v ca l p mng
8/6/2019 4 PPP
http://slidepdf.com/reader/full/4-ppp 10/21
Tính nng Cách thc hot ng Giao thc
Xác thc PAP
CHAPThc thi c ch bt tay
òi hi mt mt khu
Nén Nén d liu ti ngun;gii nén d liu ti ích
Stacker hocPredictor
K hám phá li
Tránh khung b vòng lp
Quan sát d liu b r t trên liên kt
Multilink Cân bng ti trên nhiu liên kt Multilink Protocol (MP)
CuCu hìnhhình PPP LCPPPP LCP
Quality
Magic Number
8/6/2019 4 PPP
http://slidepdf.com/reader/full/4-ppp 11/21
XácXác thcthc PPPPPP
y Hai giao thc xác thc PPP:PAP và CHAP
Xây dng PPP Session1 Giai on xây dng liên kt2 Giai on xác thc (tùy chn)3 Giai on giao thc l p mng
Dialup or Circuit-Switched
Network
8/6/2019 4 PPP
http://slidepdf.com/reader/full/4-ppp 12/21
� Mt khu c gi d i dng vn bn
ChnChn lala giaogiao thcthc xácxác thcthc PPPPPP
Remote Router (SantaCruz)
Central-Site Router (HQ)
Hostname: santacruzPassword: boardwalk
username santacruz password boardwalk
PAPBt tay 2 b c
³santacruz, boardwalk´
Accept/Reject
8/6/2019 4 PPP
http://slidepdf.com/reader/full/4-ppp 13/21
ChnChn lala giaogiao thcthc xácxác thcthc PPPPPP
Remote Router (SantaCruz)
Central-Site Router (HQ)
Hostname: santacruzPassword: boardwalk
username santacruz password boardwalk
CHAPBt tay 3 b c
Challenge
Response
Accept/Reject
y Dùng ³secret´ c bit ch bi ngi xác thcvà láng ging.
8/6/2019 4 PPP
http://slidepdf.com/reader/full/4-ppp 14/21
CuCu hìnhhình PPPPPP vàvà xácxác thcthc
8/6/2019 4 PPP
http://slidepdf.com/reader/full/4-ppp 15/21
CuCu hìnhhình PPPPPP vàvà xácxác thcthc
RouterX(config-if)# encapsulation ppp
Bt tính nng óng gói PPP
Rou
terX(co
nfig)# ho
stname name
Gán tên cho router
RouterX(config)# username name password password
Xác nhn tên và mt khu ca router láng ging
RouterX(config-if)# ppp authentication{chap | chap pap | pap chap | pap}
Bt tính nng xác thc PAP hoc CHAP
8/6/2019 4 PPP
http://slidepdf.com/reader/full/4-ppp 16/21
VíVí dd vv cucu hìnhhình PPPPPP vàvà CHAPCHAP
hostname RouterXusername RouterY password sameone!int serial 0ip address 10.0.1.1 255.255.255.0encapsulation pppppp authentication chap
hostname RouterYusername RouterX password sameone!int serial 0ip address 10.0.1.2 255.255.255.0encapsulation pppppp authentication chap
8/6/2019 4 PPP
http://slidepdf.com/reader/full/4-ppp 17/21
K imK im tratra cucu hìnhhình óngóng góigói PPPPPP
RouterX# show interface s0Serial0 is up, line protocol is upHardware is HD64570Internet address is 10.140.1.2/24MTU 1500 bytes, BW 1544 Kbit, DLY 20000 usec, rely 255/255, load 1/255Encapsulation PPP, loopback not set, keepalive set (10 sec)LCP Open
Open: IPCP, CDPCPLast input 00:00:05, output 00:00:05, output hang neverLast clearing of "show interface" counters neverQueueing strategy: fif oOutput queue 0/40, 0 drops; input queue 0/75, 0 drops5 minute input rate 0 bits/sec, 0 packets/sec5 minute output rate 0 bits/sec, 0 packets/sec
38021 packets input, 5656110 bytes, 0 no bufferR eceived 23488 broadcasts, 0 runts, 0 giants, 0 throttles0 input errors, 0 CR C, 0 frame, 0 overrun, 0 ignored, 0 abort38097 packets output, 2135697 bytes, 0 underruns0 output errors, 0 collisions, 6045 interface resets0 output buffer failures, 0 output buffers swapped out482 carrier transitionsDCD=up DSR =up DTR =up R TS=up CTS=up
8/6/2019 4 PPP
http://slidepdf.com/reader/full/4-ppp 18/21
XácXác minhminh c c chch xácxác thcthc caca PPPPPP
RouterX# debug ppp authentication4d20h: %LINK-3-UPDOWN: Interface Serial0, changed state to up4d20h: Se0 PPP: Treating connection as a dedicated line4d20h: Se0 PPP: Phase is AUTHENTICATING, by both4d20h: Se0 CHAP: O CHALLENGE id 2 len 28 from ´left"4d20h: Se0 CHAP: I CHALLENGE id 3 len 28 from ´right"4d20h: Se0 CHAP: O R ESPONSE id 3 len 28 from ´left"
4d20h: Se0 CHAP: I R ESPONSE id 2 len 28 from ´right"4d20h: Se0 CHAP: O SUCCESS id 2 len 44d20h: Se0 CHAP: I SUCCESS id 3 len 44d20h: %LINEPR OTO-5-UPDOWN: Line protocol on Interface Serial0, changed state to up
Lnh debug ppp authentication cho thy CHAP xác thc thành công
8/6/2019 4 PPP
http://slidepdf.com/reader/full/4-ppp 19/21
XácXác minhminh ss thngthng lnglng caca PPPPPP
RouterX# debug ppp negotiationPPP protocol negotiation debugging is onRouterX#*Mar 1 00:06:36.645: %LINK-3-UPDOWN: Interface BR I0:1, changed state to up*Mar 1 00:06:36.661: BR 0:1 PPP: Treating connection as a callin*Mar 1 00:06:36.665: BR 0:1 PPP: Phase is ESTABLISHING, Passive Open
*Mar 1 00:06:36.669: BR 0:1 LCP: State is Listen*Mar 1 00:06:37.034: BR 0:1 LCP: I CONFR EQ [Listen] id 7 len 17*Mar 1 00:06:37.038: BR 0:1 LCP: AuthProto PAP (0x0304C023)*Mar 1 00:06:37.042: BR 0:1 LCP: MagicNumber 0x507A214D (0x0506507A214D)*Mar 1 00:06:37.046: BR 0:1 LCP: Callback 0 (0x0D0300)*Mar 1 00:06:37.054: BR 0:1 LCP: O CONFR EQ [Listen] id 4 len 15*Mar 1 00:06:37.058: BR 0:1 LCP: AuthProto CHAP (0x0305C22305)*Mar 1 00:06:37.062: BR 0:1 LCP: MagicNumber 0x1081E7E1 (0x05061081E7E1)
*Mar 1 00:06:37.066: BR 0:1 LCP: O CONFR EJ [Listen] id 7 len 7*Mar 1 00:06:37.070: BR 0:1 LCP: Callback 0 (0x0D0300)*Mar 1 00:06:37.098: BR 0:1 LCP: I CONFACK [R EQsent] id 4 len 15*Mar 1 00:06:37.102: BR 0:1 LCP: AuthProto CHAP (0x0305C22305)*Mar 1 00:06:37.106: BR 0:1 LCP: MagicNumber 0x1081E7E1 (0x05061081E7E1)*Mar 1 00:06:37.114: BR 0:1 LCP: I CONFR EQ [ACKrcvd] id 8 len 14*Mar 1 00:06:37.117: BR 0:1 LCP: AuthProto PAP (0x0304C023)*Mar 1 00:06:37.121: BR 0:1 LCP: MagicNumber 0x507A214D (0x0506507A214D)
8/6/2019 4 PPP
http://slidepdf.com/reader/full/4-ppp 20/21
TngTng ktkt
PPP là mt giao thc l p 2 ph bin cho mng WAN.PPP gm hai thành phn chính: LCP dùng thnglng s kt ni và NCP dùng óng gói lung dliu.
Có th cu hình PPP dùng PAP hoc CHAP. PAPgi mi th dng vn bn. CHAP dùng mt hàm bmMD5.
Lnh xác minh PPP ph bin gm show interface
xác minh óng gói PPP và debu
g ppp nego
tiatio
n xác minh bt tay LCP.
8/6/2019 4 PPP
http://slidepdf.com/reader/full/4-ppp 21/21