Pppoe configuration – Brocade Mobility RFS Controller System Reference Guide (Supporting software release 5.5.0.0 and later) User Manual

426

Brocade Mobility RFS Controller System Reference Guide

53-1003099-01

8

6. Define the following NAT parameters from within the Network Address Translation (NAT) field:

7. Define the following security parameters from within the Security Settings field:

8. Define the following route parameters from within the Default Route Priority field:

Select OK to save the changes to the screen. Select Reset to revert to the last saved configuration.

PPPoE Configuration

Profile Interface Configuration

PPP over Ethernet (PPPoE) is a data-link protocol for dialup connections. PPPoE allows an Access
Point to use a broadband modem (DSL, cable modem, etc.) for access to high-speed data and
broadband networks. Most DSL providers are currently supporting (or deploying) the PPPoE
protocol. PPPoE uses standard encryption, authentication, and compression methods as specified
by the PPPoE protocol. PPPoE enables a point-to-point connection to an ISP over existing Ethernet
interface.

To provide a point-to-point connection, each PPPoE session determines the Ethernet address of a
remote PPPoE client, and establishes a session. PPPoE uses both a discover and session phase to
identify a client and establish a point-to-point connection. By using such a connection, a Wireless
WAN failover is available to maintain seamless network access if the Wired WAN were to fail.

NOTE

Devices with PPPoE enabled continue to support VPN, NAT, PBR and 3G failover over the PPPoE
interface. Multiple PPPoE sessions are supported using a single user account user account if
RADIUS is configured to allow simultaneous access.

When PPPoE client operation is enabled, it discovers an available server and establishes a PPPoE
link for traffic slow. When a wired WAN connection failure is detected, traffic flows through the
WWAN interface in fail-over mode (if the WWAN network is configured and available). When the
PPPoE link becomes accessible again, traffic is redirected back through the Access Point’s wired
WAN link.

NAT Direction

Define the Network Address Translation (NAT) direction. Options include:
Inside - The inside network is transmitting data over the network its intended destination. On the way
out, the source IP address is changed in the header and replaced by the (public) IP address.
Outside - Packets passing through the NAT on the way back to the controller or service platform
managed LAN are searched against to the records kept by the NAT engine. There, the destination IP
address is changed back to the specific internal private class IP address in order to reach the LAN over
the network.
None - No NAT activity takes place. This is the default setting.

IP Inbound Firewall
Rules

Use the drop-down menu to select an inbound IP ACL to associate with traffic on the WAN backhaul. If
an appropriate IP ACL does not exist, select the Add button to create a new one.

VPN Crypto Map

If necessary, specify a crypto map for the wireless WAN. A crypto map can be up to 256 characters long.
If a suitable crypto map is not available, click the Create button to configure a new one.

WWAN Default Route
Priority

Use the spinner control to define a priority from 1 - 8,000 for the default route learned by the wireless
WAN. The default value is 3000.