Невероятно расстраивает отсутствие протокола PPPoE в vpdn-group. Не появляется строчка в конфиге и все тут! А если и появляется, то со всем этим хламом взлететь тоже не удается :(
Прошивка: soho97-k9oy1-mz.123-11.YS1.bin
Вылечилось заливкой прошивки soho97-k9oy1-mz.122-8.YN.bin. Подробности здесь: http://diesel594.blogspot.com/2012/05/soho97_05.html
!
ip nat inside source list 1 interface Dialer1 overload
access-list 1 permit 10.2.48.0 0.0.0.255
access-list 101 permit ip 10.2.48.0 0.0.0.31 host 91.144.191.76
access-list 101 permit ip 10.2.48.0 0.0.0.31 host 194.186.207.162
access-list 101 permit ip 10.2.48.0 0.0.0.31 host 213.242.225.199
access-list 101 permit ip 10.2.48.0 0.0.0.31 host 90.150.144.54
access-list 101 permit ip 10.2.48.0 0.0.0.31 192.168.100.0 0.0.0.255
access-list 101 deny ip any any
access-list 102 permit ip any any
dialer-list 1 protocol ip permit
Прошивка: soho97-k9oy1-mz.123-11.YS1.bin
Вылечилось заливкой прошивки soho97-k9oy1-mz.122-8.YN.bin. Подробности здесь: http://diesel594.blogspot.com/2012/05/soho97_05.html
- Стер nvram
- Перезагрузил
- Отменил первоначальную настройку
- В режиме глобальной конфигурации добавил:
Virtual Private Dial-Up Network + PPPoE
vpdn enable
!
vpdn-group pppoe
request-dialin
protocol pppoe
!
Интерфейсы
interface ATM0
no ip address
no atm auto-configuration
no atm ilmi-keepalive
no atm address-registration
no atm ilmi-enable
dsl operating-mode auto
no shutdown
no shutdown
!
interface ATM0.1 point-to-point
pvc 8/35
pppoe-client dial-pool-number 1
!
!
interface Dialer1
ip address negotiated
ip mtu 1492
encapsulation ppp
dialer pool 1
ppp pap sent-username ********** password 0 **********
!
int e0
ip address 10.2.48.1 255.255.255.224
no shutdown
Default Route
ip route 0.0.0.0 0.0.0.0 Dialer1
service password-encryption
enable secret
username ****** secret ******
hostname br
ip domain-name example.com
no ip http server
DHCP
ip dhcp excluded-address 10.2.48.1 10.2.48.15
ip dhcp excluded-address 10.2.48.20 10.2.48.30
ip dhcp pool CLIENT
import all
network 10.2.48.0 255.255.255.224
default-router 10.2.48.1
dns-server 192.168.100.42
lease 0 2
Туннель
Филиал
interface Tunnel1
description Office
bandwidth 256
ip unnumbered Dialer1
ip flow ingress
ip tcp adjust-mss 1420
tunnel source ip_source
tunnel destination ip_dest
tunnel key ******
Центральный офис
interface Tunnel102
description chl.a88
bandwidth 256
ip unnumbered Vlan2
ip access-group COSERV in
ip flow ingress
ip nat inside
ip virtual-reassembly
ip tcp adjust-mss 1420
tunnel source ip_source
tunnel destination ip_dest
tunnel key ******
SSH
crypto key generate rsa
line vty 0 4
transport
Network Address Translation
interface Dialer1
ip nat outside
!
interface Ethernet0
ip nat inside
!
access-list 1 permit 10.2.48.0 0.0.0.255!
ip nat inside source list 1 interface Dialer1 overload
Листы доступа
access-list 1 permit 10.2.48.0 0.0.0.255
access-list 101 permit ip 10.2.48.0 0.0.0.31 host 91.144.191.76
access-list 101 permit ip 10.2.48.0 0.0.0.31 host 194.186.207.162
access-list 101 permit ip 10.2.48.0 0.0.0.31 host 213.242.225.199
access-list 101 permit ip 10.2.48.0 0.0.0.31 host 90.150.144.54
access-list 101 permit ip 10.2.48.0 0.0.0.31 192.168.100.0 0.0.0.255
access-list 101 deny ip any any
access-list 102 permit ip any any
dialer-list 1 protocol ip permit
Комментариев нет:
Отправить комментарий