Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

Navigation
Guide That Contains This Content
[+] Expand All
[-] Collapse All

    Configuring MLPPP and PPP Characteristics for a Profile

    To configure MLPPP and PPP characteristics for a profile:

    • Assign a broadcast virtual router group to enable broadcast accounting in a PPP profile. For more information about broadcast accounting, see RADIUS Authentication and Accounting Servers Configuration Overview and Broadband Remote Access Support for PPP Overview.

      Note: When the broadcast virtual router group is configured at both PPP profile and virtual router levels, AAA sends accounting messages only to broadcast accounting servers in the broadcast virtual router group that is configured at both PPP profile and virtual router levels.

      host1(config-profile)#ppp aaa-accounting-broadcast groupxyz

      Use the no version to remove the broadcast virtual router group assignment.

    • Assign an AAA profile to static and dynamic, multilink and nonmultilink PPP interfaces.

      Note:

      • Although an AAA profile and an interface profile have similar functionality, they are not related and you need to treat them differently.
      • For more information about AAA profiles, see JunosE Broadband Access Configuration Guide.
      host1(config-profile)#ppp aaa-profile westford24

      Use the no version to remove the AAA profile assignment.

    • Request authentication from a PPP peer router.
      host1(config-profile)#ppp authentication pap chap

      To specify the name of a virtual router to be used as the authentication virtual router context, use the virtual-router keyword.

      host1(config-profile)#ppp authentication virtual-router boston pap chap

      Use the no version to specify that the router does not require authentication.

    • Modify the length of the CHAP challenge by specifying the minimum length and maximum length.

      Caution: Do not use the ppp chap-challenge-length command; increasing the minimum length (from the default 16 bytes) or decreasing the maximum length (from the default 32 bytes) reduces the security of your router.

      host1(config-profile)#ppp chap-challenge-length 24 28

      Use the no version to restore the default minimum 16 bytes and default maximum 32 bytes.

    • Enable fragmentation on an MLPPP link interface and optionally specify the maximum fragment size, in octets, to be used on the link.
      host1(config-profile)#ppp fragmentation 128

      Use the no version to disable fragmentation on the link and restore the default fragment size, which is the link’s MTU.

    • Enable use of a hash-based algorithm to select the link on which the router transmits non-best-effort (high-priority) packets, such as voice or video, on the dynamic MLPPP interfaces created by this profile.
      host1(config-profile)#ppp hash-link-selection

      Use the no version to restore the default round-robin algorithm for MLPPP link selection.

    • Initiate IPv4 for passive clients. By default, PPP creates IP instances when it receives client requests.
      host1(config-profile)#ppp initiate-ip

      Use the no version to disable initiation of IP.

    • Initiate IPv6 for passive clients. By default, PPP creates IPv6 instances when it receives client requests.
      host1(config-profile)#ppp initiate-ipv6

      Use the no version to disable initiation of IPv6.

    • Terminate invalid IPv4 subscribers and prevent additional IPCP negotiations.

      For more information about how the IPv4 addresses are restored, see Configuring Point-to-Point Protocol in JunosE Link Layer Configuration Guide.

      host1(config-profile)#ppp ipcp lockout

      Use the no version to disable the IPCP lockout option on the interface.

    • Specify IPCP option 0x90 for each PPP interface. By default, IPCP option 0x90 is disabled on the interface.
      host1(config-profile)#ppp ipcp netmask

      Use the no version to disable IPCP option 0x90 option on the interface.

    • Configure the time period during which additional IPCP negotiations are prevented.
      host1(config-profile)#ppp ipcp-lockout-duration 400

      Use the no version to restore the default value, 600 seconds.

    • Configure the maximum number of requests for IPv4 addresses that can be received per subscriber during the time interval configured for IPCP renegotiations to be received.
      host1(config-profile)#ppp ipcp-max-negotiation 4

      Use the no version to restore the default value, 6.

    • Configure the time period during which IPCP renegotiations for IPv4 addresses that the router or the provider edge device can receive from a subscriber are restricted.
      host1(config-profile)#ppp ipcp-nego-duration 300

      Use the no version to restore the default value, 60 seconds.

    • Configure to prompt the CPE to negotiate the IPCP primary and secondary DNS options that are locally available with the broadband remote access server.
      host1(config-profile)#ppp ipcp prompt-option dns

      Use the no version to disable the command.

    • Specify the keepalive timeout value.

      You can use the ppp keepalive command without a value to restore the default, 30 seconds.

      host1(config-profile)#ppp keepalive 50

      Use the no version to disable keepalive.

    • Enable PPP packet or state machine logging on any dynamic interface that uses the profile being configured.
      host1(config-profile)#ppp log pppPacket

      Or

      host1(config-profile)#ppp log pppStateMachine

      Note: This command is equivalent to the log severity debug pppPacket and log severity debug pppStateMachine commands.

      Use the no version to disable packet or state machine logging.

    • Disable negotiation of the local magic number.
      host1(config-profile)#ppp magic-number disable

      Issuing this command prevents the router from detecting loopback configurations. Use the no version to restore negotiation of the local magic number.

    • Configure the router to ignore a mismatch of the LCP peer magic number and retain the PPP connection when the peer has not negotiated an LCP magic number.

      For more information about using this command and LCP peer magic number validation, see Understanding PPP Link Control Protocol.

      host1(config-profile)#ppp magic-number ignore-mismatch

      Use the no version to restore the default behavior, in which the router terminates the PPP connection if it detects an LCP peer magic number mismatch.

    • Configure the maximum number of LCP, IPCP, or IPv6CP renegotiation attempts, in the range 1–65535, that the router accepts before terminating a PPP session.
      host1(config-profile)#ppp max-negotiations 15

      Note: If you do not specify the optional lcp, ipcp, or ipv6cp keyword, the ppp max-negotiations command sets the maximum number of renegotiation attempts for each of LCP, IPCP, and IPv6CP to the value you specify, or to the default value (30) if you omit the optional value for maximum renegotiation attempts.

      Use the no version to restore the default value, 30 renegotiation attempts.

    • Control the negotiation of the MRU.
      host1(config-profile)#ppp mru 576

      Use the no version to restore the default value, which causes PPP to use the lower-layer MRU minus the PPP header length as the MRU value.

    • Enable the creation of dynamic MLPPP interfaces.
      host1 (config-profile)#ppp multilink enable

      Use the no version to cause the LNS to reject any incoming requests to create dynamic MLPPP interfaces.

    • Enable multiclass MLPPP and the creation of multilink classes on a dynamic MLPPP interface.
      host1 (config-profile)#ppp multilink multiclass multilink-classes 6

      Use the no version to disable multiclass MLPPP or to restore the number of multilink classes to the default value, 1.

    • Enable fragmentation on a multilink class on a dynamic MLPPP interface.
      host1(config-profile)#ppp multilink multiclass fragmentation best-effort voice low-loss video

      Use the no version to disable fragmentation on a multilink class.

    • Enable reassembly on a multilink class on a dynamic MLPPP interface.
      host1(config-profile)#ppp multilink multiclass reassembly best-effort voice low-loss video

      Use the no version to disable reassembly on a multilink class.

    • Configure mapping of QoS traffic classes to multilink classes on a dynamic MLPPP interface.
      host1(config-profile)#ppp multilink multiclass traffic-class best-effort voice low-loss video

      Use the no version to delete the mapping of QoS traffic classes to multilink classes.

    • Force a static or dynamic PPP interface into passive mode before LCP negotiation begins, for a period of one second. This delay enables slow clients to start up and initiate the LCP negotiation.
      host1(config-profile)#ppp passive-mode

      Use the no version to disable passive mode.

    • Resolve conflicts when the router and the PPP peer system have the primary and secondary DNS and WINS addresses configured with different values.
      host1(config-profile)#ppp peer dns

      Use the no ppp peer dns command or the no ppp peer wins command when you want the router to take precedence during setup negotiations between the router and the remote PC client. If the IP addresses passed to the router by the remote PC client differ from the ones you have configured on your router, the router returns the values that you configured as the correct values to the remote PC client.

    • Enable reassembly on an MLPPP link interface and optionally specify the administrative MRRU value, in octets, for the link.
      host1(config-profile)#ppp reassembly 1590

      Use the no version to disable reassembly on the link and restore the default value, which is the link’s local MRU.

    Published: 2014-08-14