prepared by: dr. mohamed abdeldayem reference: chapter 24 wade edwards, ccnp complete study guide,...
TRANSCRIPT
Experiment 9 Implementing Standard and Extended Access Control List (ACL) in Cisco Routers
Prepared By: Dr. Mohamed AbdeldayemReference: Chapter 24Wade Edwards , CCNP Complete Study Guide, 2005.
Experiment 12Configuring PPP on a serial link and configuring Password Authentication Protocol (PAP) and Challenge Handshake Authentication Protocol (CHAP)
1The Objective of the ExperimentConfiguring PPP on a serial link and configuring Password Authentication Protocol (PAP) and Challenge Handshake Authentication Protocol (CHAP). 2Configuring PPP on a serial link3The benefits of using PPP (RFC 1661 ) are that it is universal and efficient. PPP on Windows should be able to communicate with PPP on any access server, and the configuration demands on the client side are extremely small.Dedicated or Interactive PPPuse the async mode dedicated commandwith the async mode interactive commandInterface Addressing Options for Local DevicesStatic IP addressingDynamic IP addressing (DHCP)Configuring PPP on a serial link4An entire configuration file for DHCP services is shown here:service dhcpip dhcp database ftp://dhcp:[email protected]/dhcpip dhcp pool 0network 10.10.1.0 /24default-router 10.10.1.1domain-name foo.comdns-server 10.2.20.51netbios-name-server 10.2.20.51configuring Password Authentication Protocol (PAP)5Password Authentication Protocol (PAP) provides basic security authentication for connections.The username and password information, however, are transmitted in cleartext, which can be intercepted by a hacker to compromise the network. PAP operates by establishing a connection and then checking the username and password information.If the username and password information matches, an OK message is returned and the session is allowed to proceed.To configure PAP, the administrator needs to configure both the service and a database of usernames and passwords. Using the following commands encapsulation pppppp authentication {chap | chap pap | pap chap |pap} [if-needed] [list-name | default] [callin]Usernames and passwords are added to the router with the username name password secret command.Configuring Challenge Handshake Authentication Protocol (CHAP)6The following commands are used to enable PPP, a requirement for CHAP, and to configure the router for CHAP authentication:encapsulation pppppp authentication {chap | chap pap | pap chap |pap} [if-needed] [list-name | default] [callin]Reference7Wade Edwards , CCNP Complete Study Guide, 2005.
7