Hello,

I was wondering how to configure a PIX 501 for use with a PPPOE connection,
I can't seem to find an information off the web on this. Has anybody done
this before?

Thanks in advance.

David

Report this post to a moderator

I'm pretty sure if you search cisco's web site for pix pppoe and config
you'll find what you need.

Good luck

Jeff

David wrote:
>
> Hello,
>
> I was wondering how to configure a PIX 501 for use with a PPPOE connection,
> I can't seem to find an information off the web on this. Has anybody done
> this before?
>
> Thanks in advance.
>
> David

Report this post to a moderator

David,

You must first verify that your PIX is running version 6.2 or later.
PPPoE was first introduced in that release. (Sidebar: if you upgrade
to 6.2, be sure to upgrade the PDM to 2.02 also - you can kick
yourself in the head if you don't upgrade and you use the older PDM.
Of course, using the PDM is for wimps. hehe!).

I'll assume here that you have a basic knowledge of configuring the
PIX. With that assumption, I'll give you the commands, and then a
brief explanation. Text enclosed in [brackets] are variable entries
to be determined as the explained (do not include the brackets in your
config, of course). Also, since many people using PPPoE are going
through SBC/Ameritech (at least in U.S.), I'll use them in the
examples.

Telnet (or console) to the PIX and perform the following:

1. config t - Enter configuration mode
2. vpdn group pppoe_ameritech request dialout pppoe - This defines
the VPDN group (pppoe_ameritech in this example) to be used for the
pppoe connection
3. vpdn group pppoe_ameritech ppp authentication [pap/chap/mschap] -
If your ISP requires authentication (like Ameritech does), then select
the proper authentication protocol with this command. Note that
SBC/Ameritech is typically set to CHAP.
4. vpdn group pppoe_ameritech localname [username] - Associates the
uername asssigned by the ISP to the vpdn group.
5. vpdn username [username] password [password] - Enter the username
and password assigned by the ISP.
6. ip address outside pppoe setroute OR ip address outside
[ip_address] [mask] pppoe setroute - Choose one of these two commands
based on your IP address. The first command is for a dynamic address
received over PPPoE. The second command sets a static IP address. In
both commands, the "setroute" option enables the default route.
7. wr mem - Save to memory
8. sho ip -

fyi-1 - if you're using a dynamic IP address over PPPoE, and you're
PIX is also your DHCP server to your clients, you can use the command
"dhcpd auto_config" to automatically pass the PIX values through to
the clients.

fyi-2 - you can clear all your PPPoE settings (and other VPDN settings
if you have them) using the command: clear vpdn


Enjoy!
- sn00p

Report this post to a moderator