Dial-out router example, Dial-in router example – Enterasys Networks Security Router X-PeditionTM User Manual

Page 251

Advertising
background image

Configuring DoD/BoD

XSR User’s Guide 10-29

Dial-out Router Example

The following commands add a dialer pool and dialer group, specify a secret password to be sent
to the peer for PAP authentication, and specify three MLPPP call destinations - XSR-Andover,
XSR-Boston and XSR-Buffalo - on XSR-Toronto’s Dialer interface 1. Spoofing is enabled by the

dialer map

command.

XSR(config)#interface dialer 1 multi-point
XSR(config-if<D1>)#encapsulation ppp
XSR(config-if<D1>)#ip address 172.22.85.1
XSR(config-if<D1>)#ppp pap sent-username XSR-toronto password secret 0 xxgene
XSR(config-if<D1>)#dialer pool 1
XSR(config-if<D1>)#dialer map ip 172.22.85.2 4710
XSR(config-if<D1>)#dialer map ip 172.22.85.3 89302
XSR(config-if<D1>)#dialer map ip 172.22.85.4 672783
XSR(config-if<D1>)#no shutdown
XSR(config-if<D1>)#dialer-group 1

The following commands add a dialer pool member and set the Central Office switch type on BRI
port 1/0:

XSR(config)#interface bri 1/0
XSR(config-if<BRI-1/0>)#isdn switch-type basic-net3
XSR(config-if<BRI-1/0>)#dialer pool-member 1
XSR(config-if<BRI-1/0>)#no shutdown

The following command maps ACL 101 to dialer group 1:

XSR(config)#dialer-list 1 protocol ip list 101

The following command defines interesting packets for the dial out trigger by configuring ACL 101
to pass Type 8 source and destination ICMP packets:

XSR(config)#access-list 101 permit icmp any any 8

Dial-in Router Example

The following commands configure Dialer interface 0:

XSR(config)#interface dialer 0

+

Enforces authentication for incoming calls

XSR(config-if<D0>)#encapsulation ppp
XSR(config-if<D0>)#ppp authentication pap

The following commands add a dialer pool and specify the PPP authenticated username of XSR-
Toronto calling in to Dialer interface 1:

XSR(config)#interface dialer 1
XSR(config-if<D1>)#encapsulation ppp
XSR(config-if<D1>)#ip address 172.22.85.2
XSR(config-if<D1>)#dialer pool 1
XSR(config-if<D1>)#no shutdown
XSR(config-if<D1>)#dialer remote-name XSR-toronto

The following commands add a dial pool and specifies the PPP authenticated username XSR-
Boston to map incoming calls to Dialer interface 2:

XSR(config)#interface dialer 2
XSR(config-if<D2>)#encapsulation ppp
XSR(config-if<D2>)#ip address 172.22.85.3
XSR(config-if<D2>)#dialer pool 1

Advertising
Popular Brands
Popular manuals