| Section |
Page |
| Cisco 10000 Series Router Software Configuration Guide |
1 |
| Contents |
3 |
| About This Guide |
25 |
| Guide Revision History |
25 |
| Audience |
30 |
| Document Organization |
30 |
| Document Conventions |
32 |
| Related Documentation |
33 |
| RFCs |
34 |
| Obtaining Documentation, Obtaining Support, and Security Guidelines |
34 |
| Broadband Aggregation and Leased-Line Overview |
35 |
| Hardware Requirements |
35 |
| Checking Hardware and Software Compatibility |
35 |
| Broadband Architecture Models |
36 |
| PPP Termination and Aggregation Architectures |
36 |
| PTA to Virtual Routing and Forwarding Architecture |
37 |
| PTA to Multiprotocol Label Switching Virtual Private Network Architecture |
38 |
| L2TP Architectures |
39 |
| L2TP to Virtual Routing and Forwarding Architecture |
39 |
| L2TP over MPLS to Virtual Routing and Forwarding Instance |
40 |
| L2TP Access Concentrator Architecture |
41 |
| Routed Bridge Encapsulation Architectures |
41 |
| RBE to Virtual Routing and Forwarding Architecture |
42 |
| RBE to Multiprotocol Label Switching Virtual Private Network Architecture |
43 |
| Leased-Line Architecture Models |
44 |
| Channelized Aggregation |
44 |
| Frame Relay Aggregation |
44 |
| ATM Aggregation |
45 |
| Ethernet Aggregation |
46 |
| MPLS Provider Edge Applications |
46 |
| Combined Broadband and Leased-Line Applications |
47 |
| Load Balancing Architecture Models |
47 |
| IP and MPLS Applications |
47 |
| Single Ingress and Single Egress Provider Edge Applications |
48 |
| Single Ingress and Two Egress Provider Edge Applications |
48 |
| Multiple Ingress and Multiple Egress Provider Edge Applications |
49 |
| New Features, Enhancements, and Changes |
49 |
| New Features in Cisco IOS Release 12.2(33)XNE3 |
50 |
| New Features in Cisco IOS Release 12.2(33)XNE |
50 |
| New Features in Cisco IOS Release 12.2(33)SB3 |
52 |
| New Features in Cisco IOS Release 12.2(33)SB2 |
52 |
| New Features in Cisco IOS Release 12.2(33)SB |
52 |
| New Features in Cisco IOS Release 12.2(31)SB5 |
53 |
| New Features in Cisco IOS Release 12.2(31)SB3 |
53 |
| New Features in Cisco IOS Release 12.2(31)SB2 |
54 |
| New Features in Cisco IOS Release 12.2(28)SB1 |
55 |
| New Features in Cisco IOS Release 12.2(28)SB |
55 |
| New Features in Cisco IOS Release 12.3(7)XI7 |
59 |
| New Features in Cisco IOS Release 12.3(7)XI3 |
60 |
| New Features in Cisco IOS Release 12.3(7)XI2 |
60 |
| New Features in Cisco IOS Release 12.3(7)XI1 |
60 |
| Scalability and Performance |
63 |
| Line Card VC Limitations |
63 |
| Limitations and Restrictions |
65 |
| Scaling Enhancements in Cisco IOS Release 12.2(33)XNE |
66 |
| Scaling Enhancements in Cisco IOS Release 12.2(33)SB |
67 |
| Layer 4 Redirect Scaling |
67 |
| Scaling Enhancements in Cisco IOS Release 12.3(7)XI1 |
68 |
| FIB Scaling |
68 |
| Policy-Map Scaling |
68 |
| Queue Scaling |
69 |
| Scaling Enhancements in Cisco IOS Release 12.3(7)XI2 |
69 |
| Queue Scaling |
69 |
| VC Scaling |
70 |
| Scaling Enhancements in Cisco IOS Release 12.2(28)SB |
70 |
| Configuring the Cisco 10000 Series Router for High Scalability |
70 |
| Configuring Parameters for RADIUS Authentication |
71 |
| Configuring L2TP Tunnel Settings |
71 |
| VPDN Group Session Limiting |
72 |
| Configuring the PPP Authentication Timeout |
72 |
| Disabling Cisco Discovery Protocol |
72 |
| Disabling Gratuitous ARP Requests |
73 |
| Configuring a Virtual Template Without Interface-Specific Commands |
73 |
| Monitoring PPP Sessions Using the SNMP Management Tools |
75 |
| SNMP Process and High CPU Utilization |
75 |
| CISCO-ATM-PVCTRAP-EXTN-MIB |
76 |
| Configuring the Trunk Interface Input Hold Queue |
77 |
| Configuring no atm pxf queuing |
77 |
| Configuring atm pxf queuing |
78 |
| Configuring keepalive |
79 |
| Enhancing Scalability of Per-User Configurations |
79 |
| Setting VRF and IP Unnumbered Interface Configurations in User Profiles |
80 |
| Setting VRF and IP Unnumbered Interface Configuration in a Virtual Interface Template |
80 |
| Redefining User Profiles to Use the ip:vrf-id and ip:ip-unnumbered VSAs |
80 |
| Placing PPPoA Sessions in Listening Mode |
81 |
| Scaling L2TP Tunnel Configurations |
81 |
| Using the RADIUS Attribute cisco-avpair=\ |
82 |
| Using Full Virtual Access Interfaces |
82 |
| Preventing Full Virtual Access Interfaces |
83 |
| Configuring Remote Access to MPLS VPN |
85 |
| MPLS VPN Architecture |
86 |
| Access Technologies |
87 |
| PPP over ATM to MPLS VPN |
88 |
| PPP over Ethernet to MPLS VPN |
89 |
| RBE over ATM to MPLS VPN |
91 |
| MPLS VPN ID |
91 |
| DHCP Relay Agent Information Option-Option 82 |
93 |
| DHCP Relay Support for MPLS VPN Suboptions |
93 |
| Feature History for RA to MPLS VPN |
94 |
| Restrictions for RA to MPLS VPN |
94 |
| Prerequisites for RA to MPLS VPN |
95 |
| Configuration Tasks for RA to MPLS VPN |
96 |
| Configuring the MPLS Core Network |
96 |
| Enabling Label Switching of IP Packets on Interfaces |
96 |
| Configuring Virtual Routing and Forwarding Instances |
97 |
| Associating VRFs |
97 |
| Configuring Multiprotocol BGP PE to PE Routing Sessions |
98 |
| Configuring Access Protocols and Connections |
100 |
| Configuring a Virtual Template Interface |
101 |
| Configuring PPP over ATM Virtual Connections and Applying Virtual Templates |
102 |
| Configuring PPPoE over ATM Virtual Connections and Applying Virtual Templates |
102 |
| Configuring PPPoE over Ethernet Virtual Connections and Applying Virtual Templates |
104 |
| Configuring RBE over ATM Virtual Connections |
106 |
| Configuring and Associating Virtual Private Networks |
112 |
| Configuring Virtual Private Networks |
112 |
| Associating VPNs with a Virtual Template Interface |
112 |
| Configuring RADIUS User Profiles for RADIUS-Based AAA |
114 |
| Verifying VPN Operation |
114 |
| Configuration Examples for RA to MPLS VPN |
114 |
| PPPoA to MPLS VPN Configuration Example |
115 |
| PPPoE to MPLS VPN Configuration Example |
118 |
| RBE to MPLS VPN Configuration Example |
122 |
| Monitoring and Maintaining an MPLS Configuration |
123 |
| Verifying the Routing Protocol Is Running |
124 |
| Verifying MPLS |
124 |
| Verifying Connections Between Neighbors |
124 |
| Verifying Label Distribution |
125 |
| Verifying Label Bindings |
126 |
| Verifying Labels Are Set |
127 |
| Monitoring and Maintaining the MPLS VPN |
127 |
| Verifying VRF Configurations |
128 |
| Verifying the Routing Table |
128 |
| Verifying the PE to PE Routing Protocols |
129 |
| Verifying the PE to CE Routing Protocol |
130 |
| Verifying the MPLS VPN Labels |
130 |
| Testing the VRF |
130 |
| Monitoring and Maintaining PPPoX to MPLS VPN |
131 |
| Monitoring and Maintaining RBE to MPLS VPN |
132 |
| Configuring Multiprotocol Label Switching |
135 |
| BGP Multipath Load Sharing for eBGP and iBGP in an MPLS VPN |
135 |
| Feature History for BGP Multipath Load Sharing for eBGP and iBGP in an MPLS VPN |
136 |
| Restrictions for BGP Multipath Load Sharing for eBGP and iBGP in an MPLS VPN |
137 |
| Prerequisites for BGP Multipath Load Sharing for eBGP and iBGP in an MPLS VPN |
137 |
| IGP Convergence Acceleration |
137 |
| Configuring IGP Convergence Acceleration |
138 |
| Configuring BGP Multipath Load Sharing for eBGP and iBGP in an MPLS VPN |
138 |
| Configuring Multipath Load Sharing for eBGP and iBGP |
139 |
| Verifying Multipath Load Sharing for eBGP and iBGP |
139 |
| Configuration Examples for BGP Multipath Load Sharing for eBGP and iBGP in an MPLS VPN |
139 |
| eBGP and iBGP Multipath Load Sharing Configuration Example |
140 |
| Verifying eBGP and iBGP Multipath Load Sharing |
140 |
| Monitoring and Maintaining BGP Multipath Load Sharing for eBGP and iBGP |
141 |
| IPv6 VPN over MPLS |
141 |
| Feature History for IPv6 VPN over MPLS |
142 |
| Prerequisites for Implementing IPv6 VPN over MPLS |
142 |
| Restrictions for Implementing IPv6 VPN over MPLS |
143 |
| Configuration Tasks for Implementing IPv6 VPN over MPLS |
143 |
| BGP Features |
144 |
| IPv6 Internet Access |
145 |
| VRF-Aware Router Applications |
146 |
| VRF-Lite |
146 |
| QoS Features |
146 |
| Configuration Example for Implementing IPv6 VPN over MPLS |
147 |
| Monitoring and Maintaining IPv6 VPN over MPLS |
149 |
| Session Limit Per VRF |
149 |
| Application of VPDN Parameters to VPDN Groups |
150 |
| VPDN Template Configuration |
151 |
| Feature History for Session Limit Per VRF |
151 |
| Restrictions for Session Limit Per VRF |
151 |
| Prerequisites for Session Limit Per VRF |
151 |
| Configuring Session Limit Per VRF |
152 |
| Verifying a Session Limit Per VRF Configuration |
153 |
| Configuration Examples for Session Limit Per VRF |
153 |
| Monitoring and Maintaining Session Limit Per VRF |
155 |
| Half-Duplex VRF |
155 |
| Upstream and Downstream VRFs |
156 |
| Reverse Path Forwarding Check Support |
157 |
| Feature History for Half-Duplex VRF |
157 |
| Restrictions for Half-Duplex VRF |
157 |
| Prerequisites for Half-Duplex VRF |
157 |
| Configuration Tasks for Half-Duplex VRF |
158 |
| Configuring Upstream and Downstream VRFs on the L2TP Access Concentrator and PE Router |
158 |
| Associating VRFs |
159 |
| Configuring RADIUS |
160 |
| Configuration Examples for Half-Duplex VRF |
160 |
| Hub and Spoke Sample Configuration with Half-Duplex VRFs |
161 |
| RADIUS Sample Configuration |
162 |
| Monitoring and Maintaining Half-Duplex VRF |
163 |
| Configuring the Layer 2 Tunnel Protocol Access Concentrator and Network Server |
167 |
| IP Reassembly |
167 |
| Feature History for IP Reassembly |
168 |
| Layer 2 Access Concentrator |
168 |
| Tunnel Sharing |
170 |
| Tunnel Service Authorization |
170 |
| Tunnel Selection |
170 |
| Sessions per Tunnel Limiting |
171 |
| Session Load Balancing |
172 |
| Session Load Failover |
172 |
| Feature History for LAC |
172 |
| Restrictions for LAC |
173 |
| Required Configuration Tasks for LAC |
173 |
| Enabling the LAC to Look for Tunnel Definitions |
173 |
| Optional Configuration Tasks for LAC |
173 |
| Enabling Sessions with Different Domains to Share the Same Tunnel |
174 |
| Enabling the LAC to Conduct Tunnel Service Authorization |
174 |
| Configuring Sessions Per Tunnel Limiting on the LAC |
178 |
| RADIUS Server Optional Configuration Tasks for LAC |
179 |
| Enabling Tunnel Sharing for RADIUS Services |
179 |
| Enabling the RADIUS Server to Conduct Tunnel Service Authorization |
180 |
| Configuring Sessions Per Tunnel Limiting in the RADIUS Service Profile |
182 |
| Configuration Example for LAC |
183 |
| Monitoring and Maintaining LAC |
187 |
| L2TP Network Server |
188 |
| Virtual Template Interface |
189 |
| Virtual Routing and Forwarding Instance |
189 |
| Per VRF AAA |
189 |
| Private Servers |
190 |
| RADIUS Attribute Screening |
190 |
| Packet Fragmentation |
190 |
| Tunnel Accounting |
191 |
| Tunnel Authentication |
191 |
| Named Method Lists |
193 |
| Framed-Route VRF Aware |
193 |
| Feature History for LNS |
194 |
| Restrictions for the LNS |
194 |
| Prerequisites for LNS |
194 |
| Required Configuration Tasks for LNS |
195 |
| Configuring the Virtual Template Interface |
195 |
| Configuring the LNS to Initiate and Receive L2TP Traffic |
195 |
| Optional Configuration Tasks for LNS |
196 |
| Configuring per VRF AAA Services |
197 |
| Configuring a VRF on the LNS |
202 |
| Configuring Sessions per Tunnel Limiting on the LNS |
202 |
| Configuring RADIUS Attribute Accept or Reject Lists |
203 |
| Configuring the LNS for RADIUS Tunnel Accounting |
205 |
| Configuring the LNS for RADIUS Tunnel Authentication |
208 |
| Configuration Examples for LNS |
211 |
| Managed LNS Configuration Example |
211 |
| Tunnel Accounting Configuration Examples |
213 |
| Tunnel Authentication Configuration Examples |
216 |
| Monitoring and Maintaining LNS |
217 |
| Configuring PPPoE over Ethernet and IEEE 802.1Q VLAN |
219 |
| PPPoE over Ethernet |
219 |
| Feature History for PPPoE over Ethernet |
220 |
| Restrictions for PPPoE over Ethernet |
220 |
| Configuration Tasks for PPPoE over Ethernet |
220 |
| Configuring a Virtual Template Interface |
220 |
| Creating an Ethernet Interface and Enabling PPPoE |
221 |
| Configuring PPPoE in a VPDN Group |
221 |
| Configuring PPPoE in a BBA Group |
221 |
| Configuration Example for PPPoE over Ethernet |
223 |
| Static MAC Address for PPPoE |
223 |
| Feature History for Static MAC Address for PPPoE |
224 |
| PPPoE over IEEE 802.1Q VLANs |
225 |
| Feature History for PPPoE over IEEE 802.1Q VLANs |
225 |
| Restrictions for PPPoE over IEEE 802.1Q VLANs |
225 |
| Configuration Tasks for PPPoE over IEEE 802.1Q VLANs |
225 |
| Configuring a Virtual Template Interface |
226 |
| Creating an Ethernet 802.1Q Encapsulated Subinterface and Enabling PPPoE |
226 |
| Configuring PPPoE in a VPDN Group |
226 |
| Configuring PPPoE in a BBA Group |
227 |
| Configuration Examples for PPPoE over IEEE 802.1Q VLANs |
228 |
| Verifying PPPoE over Ethernet and IEEE 802.1Q VLAN |
229 |
| Clearing PPPoE Sessions |
230 |
| TCP MSS Adjust |
230 |
| Feature History for TCP MSS Adjust |
230 |
| Information about TCP MSS Adjust |
230 |
| Restrictions for TCP MSS Adjust |
231 |
| Configuration Task for TCP MSS Adjust |
231 |
| TCP MSS Adjustment Configuration: Examples |
232 |
| VLAN Range |
233 |
| Feature History for VLAN Range |
233 |
| Restrictions for VLAN Range |
234 |
| Configuration Task for VLAN Range |
234 |
| Configuring a Range of VLAN Subinterfaces |
234 |
| Configuration Examples for VLAN Range |
235 |
| Verifying the Configuration of a Range of Subinterfaces |
236 |
| Configuring IP Unnumbered on IEEE 802.1Q VLANs |
237 |
| Feature History for IP Unnumbered on VLANs |
238 |
| Benefits for IP Unnumbered on VLANs |
238 |
| Restrictions for IP Unnumbered on VLANs |
239 |
| Configuration Tasks for IP Unnumbered on VLANs |
239 |
| Configuring IP Unnumbered for an Ethernet VLAN Subinterface |
239 |
| Configuring IP Unnumbered for a Range of Ethernet VLAN Subinterfaces |
240 |
| Configuration Examples for IP Unnumbered on VLANs |
240 |
| Monitoring and Maintaining IP Unnumbered Ethernet VLAN Subinterfaces |
241 |
| Configuring ATM Permanent Virtual Circuit Autoprovisioning |
243 |
| ATM PVC Autoprovisioning |
243 |
| Local Template-Based ATM PVC Provisioning |
244 |
| Feature History for Local Template-Based ATM PVC Provisioning |
244 |
| ATM Interface Oversubscription |
244 |
| VC Class |
245 |
| ATM VC Scaling and VC Assignment |
246 |
| When SAR the Page Limit is Reached |
247 |
| OC-12 ATM Line Card and VC Scaling |
247 |
| Feature History for ATM PVC Autoprovisioning |
247 |
| Restrictions for ATM PVC Autoprovisioning |
247 |
| Configuration Tasks for ATM PVC Autoprovisioning |
248 |
| Creating an On-Demand PVC Using a VC Class |
248 |
| Creating an On-Demand PVC Directly |
250 |
| Creating an On-Demand PVC With Infinite Range |
253 |
| Monitoring and Maintaining ATM PVC Autoprovisioning |
254 |
| Configuration Example for ATM PVC Autoprovisioning |
255 |
| Variable Bit Rate Non-Real Time Oversubscription |
256 |
| Feature History for VBR-nrt Oversubscription |
257 |
| Restrictions for VBR-nrt Oversubscription |
257 |
| Configuration Tasks for VBR-nrt Oversubscription |
259 |
| Configuring VBR-nrt Oversubscription |
259 |
| Verifying ATM PVC Oversubscription |
259 |
| Configuration Example for ATM PVC Oversubscription |
260 |
| Configuring Multihop |
261 |
| Feature History for Multihop |
262 |
| Restrictions for Multihop |
263 |
| Required Configuration Tasks for Multihop |
263 |
| Enabling VPDN and Multihop Functionality |
263 |
| Terminating the Tunnel from the LAC |
264 |
| Mapping the Ingress Tunnel Name to an LNS |
264 |
| Optional Configuration Tasks for Multihop |
265 |
| Specifying VPDN Tunnel Authorization Searches by Ingress Tunnel Name |
265 |
| Preserving the Type of Service Field of Encapsulated IP Packets |
265 |
| Configuring an Accept-Dialin VPDN Group to Preserve IP TOS |
266 |
| Configuring a Request-Dialout VPDN Group to Preserve IP TOS |
267 |
| Configuration Examples for Multihop |
268 |
| Monitoring and Maintaining Multihop Configurations |
269 |
| Configuring Address Pools |
273 |
| Address Assignment Mechanisms |
273 |
| Local Address Pool |
274 |
| Benefits of a Local Address Pool |
274 |
| Limitations of a Local Address Pool |
274 |
| RADIUS-Based Address Assignment |
274 |
| Benefits of RADIUS-Based Address Assignment |
275 |
| Limitations of RADIUS-Based Address Assignment |
275 |
| DHCP-Based Address Assignment |
275 |
| Benefits of DHCP-based Address Assignment |
275 |
| Limitations of DHCP-Based Address Assignment |
276 |
| On-Demand Address Pool Manager |
276 |
| Feature History for On-Demand Address Pool Manager |
277 |
| Address Allocation for PPP Sessions |
277 |
| Subnet Releasing |
277 |
| On-Demand Address Pools for MPLS VPNs |
277 |
| Benefits On-Demand Address Pool Manager |
278 |
| Prerequisites for On-Demand Address Pool Manager |
278 |
| Required Configuration Tasks for On-Demand Address Pool Manager |
278 |
| Defining DHCP ODAPs as the Global Default Pooling Mechanism |
279 |
| Configuring the DHCP Pool as an ODAP |
279 |
| Configuring the AAA Client |
280 |
| Configuring RADIUS |
281 |
| Optional Configuration Tasks for On-Demand Address Pool Manager |
282 |
| Defining ODAPs on an Interface |
282 |
| Configuring ODAPs to Obtain Subnets Through IPCP Negotiation |
283 |
| Disabling ODAPs |
283 |
| Verifying On-Demand Address Pool Operation |
284 |
| Configuration Examples for On-Demand Address Pool Manager |
286 |
| Configuring DHCP ODAPs on an Interface |
286 |
| Configuring ODAPs to Obtain Subnets Through IPCP Negotiation |
287 |
| Monitoring and Maintaining an On-Demand Address Pool |
287 |
| Overlapping IP Address Pools |
288 |
| Feature History for Overlapping IP Address Pools |
289 |
| Restrictions for Overlapping IP Address Pools |
289 |
| Configuration Tasks for Overlapping IP Address Pools |
289 |
| Configuring a Local Pool Group for IP Overlapping Address Pools |
289 |
| Verifying Local Pool Groups for IP Overlapping Address Pools |
290 |
| Configuration Examples for Overlapping IP Address Pools |
290 |
| Generic IP Overlapping Address Pools Example |
290 |
| IP Overlapping Address Pools for VPNs and VRFs Example |
291 |
| Configuring Local AAA Server, User Database-Domain to VRF |
293 |
| Feature History for Local AAA Server, User Database-Domain to VRF |
294 |
| Prerequisites for Local AAA Server, User Database-Domain to VRF |
294 |
| Establishing a PPP Connection |
294 |
| AAA Authentication |
294 |
| AAA Authorization |
295 |
| AAA Accounting |
295 |
| AAA Attribute Lists |
296 |
| Converting from RADIUS Format to Cisco IOS AAA Format |
296 |
| Defining AAA Attribute Lists |
297 |
| Subscriber Profiles |
297 |
| AAA Method Lists |
298 |
| Configuration Tasks for Local AAA Server, User Database-Domain to VRF Using Local Attributes |
298 |
| Defining AAA |
298 |
| Defining RADIUS and Enabling NAS-PORT |
299 |
| Defining a VRF |
299 |
| Applying AAA to a Virtual Template |
299 |
| Defining a Loopback Interface |
300 |
| Creating an IP Address Pool |
300 |
| Defining a Subscriber Profile |
300 |
| Defining an AAA Attribute List |
300 |
| Verifying Local AAA Server, User Database-Domain to VRF Using Local Attributes |
301 |
| Configuration Example for Local AAA Server, User Database-Domain to VRF |
301 |
| Example-VRF with DBS |
303 |
| Example-VRF with ACL |
304 |
| Monitoring and Maintaining Local AAA Server, User Database-Domain to VRF |
304 |
| Configuring Traffic Filtering |
305 |
| IP Receive ACLs |
305 |
| Feature History for IP Receive ACLs |
306 |
| Restrictions for IP Receive ACLs |
306 |
| Configuration Tasks for IP Receive ACLs |
306 |
| Configuring Receive ACLs |
307 |
| Verifying Receive ACLs |
307 |
| Configuration Example for IP Receive ACLs |
307 |
| Time-Based ACLs |
308 |
| Feature History for Time-Based ACLs |
308 |
| Restrictions for Time-Based ACLs |
309 |
| Configuration Tasks for Time-Based ACLs |
309 |
| Creating a Time Range |
309 |
| Applying a Time Range to a Numbered Access Control List |
310 |
| Applying a Time Range to a Named Access Control List |
311 |
| Monitoring and Maintaining Time-Based ACLs |
312 |
| Configuration Examples for Time-Based ACLs |
312 |
| Unicast Reverse Path Forwarding |
315 |
| Feature History for uRPF |
316 |
| Prerequisites for uRPF |
316 |
| Restrictions for uRPF |
316 |
| Configuring Unicast RPF |
317 |
| Monitoring and Maintaining uRPF |
318 |
| Configuration Examples of uRPF |
320 |
| Configuring Loose Mode uRPF |
321 |
| Configuring Loose Mode uRPF with the allow-self-ping Option |
321 |
| Configuring Loose Mode uRPF with the allow-default Option |
322 |
| Configuring Automatic Protection Switching |
323 |
| Multirouter Automatic Protection Switching |
323 |
| Feature History for MR-APS |
324 |
| Restrictions for MR-APS |
325 |
| Configuration Tasks for MR-APS |
325 |
| Configuring MR-APS on Unchannelized Line Cards |
325 |
| Configuring MR-APS on Channelized Line Cards |
326 |
| Configuring MR-APS with Static Routes |
327 |
| Configuring MR-APS with Static Routes on Unchannelized Line Cards |
327 |
| Configuring MR-APS with Static Routes on Channelized Line Cards |
329 |
| Monitoring and Maintaining the MR-APS Configuration |
331 |
| Single-router Automatic Protection Switching |
331 |
| Feature History for SR-APS |
333 |
| Configuring SR-APS |
333 |
| Disabling SR-APS |
333 |
| Monitoring and Maintaining the SR-APS Configuration |
334 |
| Threshold Commands |
335 |
| Specifying SR-APS Signal Degrade BER Threshold |
335 |
| Specifying SR-APS Signal Fail BER Threshold |
336 |
| Configuring IP Multicast |
337 |
| Feature History for IP Multicast |
338 |
| Restrictions for IP Multicast |
338 |
| Configuration Tasks for IP Multicast Routing |
338 |
| Enabling IP Multicast Routing |
339 |
| Enabling PIM on an Interface |
339 |
| Enabling Dense Mode |
339 |
| Enabling Sparse Mode |
340 |
| Enabling Sparse-Dense Mode |
340 |
| Configuring Native Multicast Load Splitting |
340 |
| Configuring the Control Plane Protocol Policy |
340 |
| Configuring RADIUS Features |
343 |
| RADIUS Attribute Screening |
343 |
| Feature History for RADIUS Attribute Screening |
344 |
| Restrictions for RADIUS Attribute Screening |
344 |
| Prerequisites for RADIUS Attribute Screening |
344 |
| Configuration Tasks for RADIUS Attribute Screening |
345 |
| Configuration Examples for RADIUS Attribute Screening |
345 |
| Authorization Accept Configuration Example |
345 |
| Accounting Reject Configuration Example |
345 |
| Authorization Reject and Accounting Accept Configuration Example |
346 |
| Rejecting Required Attributes Configuration Example |
346 |
| RADIUS Transmit Retries |
346 |
| Feature History for RADIUS Transmit Retries |
347 |
| Restrictions for RADIUS Transmit Retries |
347 |
| Configuring RADIUS Transmit Retries |
347 |
| Configuration Example for RADIUS Transmit Retries |
347 |
| Monitoring and Troubleshooting RADIUS Transmit Retries |
348 |
| Extended NAS-Port-Type and NAS-Port Support |
348 |
| Feature History for Extended NAS-Port-Type and NAS-Port Support |
349 |
| NAS-Port-Type (RADIUS Attribute 61) |
349 |
| NAS-Port (RADIUS Attribute 5) |
350 |
| NAS-Port-ID (RADIUS Attribute 87) |
350 |
| Prerequisites for Extended NAS-Port-Type and NAS-Port Attributes Support |
350 |
| Configuring Extended NAS-Port-Type and NAS-Port Attributes Support |
351 |
| Verifying Extended NAS-Port-Type and NAS-Port-ID Attributes Support |
353 |
| Configuration Examples for Extended NAS-Port-Type Attribute Support |
354 |
| RADIUS Attribute 31: PPPoX Calling Station ID |
355 |
| Feature History for PPPoX Calling Station ID |
355 |
| Calling-Station-ID Formats |
355 |
| Restrictions for PPPoX Calling Station ID |
356 |
| Related Documents for PPPoX Calling Station ID |
357 |
| Configuration Tasks for PPPoX Calling Station ID |
357 |
| Configuring the Calling-Station-ID Format |
357 |
| Verifying the Calling-Station-ID |
357 |
| Configuration Example for PPPoX Calling Station ID |
358 |
| Related Commands for PPPoX Calling Station ID |
359 |
| RADIUS Packet of Disconnect |
359 |
| Feature History for RADIUS Packet of Disconnect |
360 |
| Benefits for RADIUS Packet of Disconnect |
360 |
| Restrictions for RADIUS Packet of Disconnect |
360 |
| Related Documents for RADIUS Packet of Disconnect |
361 |
| Prerequisites for RADIUS Packet of Disconnect |
361 |
| Configuration Tasks for RADIUS Packet of Disconnect |
361 |
| Configuring AAA POD Server |
362 |
| Verifying AAA POD Server |
362 |
| Monitoring and Maintaining AAA POD Server |
363 |
| Configuration Example for RADIUS Packet of Disconnect |
363 |
| Cisco 10000 Series Router PXF Stall Monitor |
365 |
| Feature History of Cisco 10000 Series Router PXF Stall Monitor |
365 |
| Information about Cisco 10000 Series Router PXF Stall Monitor |
365 |
| Recovery Actions |
367 |
| Restrictions for Cisco 10000 Series Router PXF Stall Monitor |
367 |
| Configuring Cisco 10000 Series Router PXF Stall Monitor |
368 |
| Configuration Example of Cisco 10000 Series Router PXF Stall Monitor |
369 |
| SSO-BFD |
373 |
| Feature History of SSO-BFD |
373 |
| Information about SSO-BFD |
373 |
| Enhanced Timers |
374 |
| BFD HA Process |
374 |
| Early Packet Send |
374 |
| Restrictions of SSO-BFD |
375 |
| Monitoring and Maintaining SSO-BFD |
376 |
| Configuration Examples of SSO-BFD |
376 |
| SSO-BFD with Static: Example |
377 |
| SSO-BFD with BGP: Example |
379 |
| SSO-BFD with EIGRP: Example |
383 |
| SSO-BFD with ISIS: Example |
386 |
| SSO-BFD with OSPF: Example |
388 |
| Configuring Link Noise Monitoring |
393 |
| About Link Noise Monitoring |
393 |
| Feature History of Link Noise Monitoring |
393 |
| Restrictions for Link Noise Monitoring |
393 |
| Configuration Tasks for Link Noise Monitoring |
394 |
| Enabling Syslog Messages |
395 |
| Configuration Examples for Link Noise Monitoring |
396 |
| Example of LNM Configuration on a Line Card |
396 |
| Example of LNM Configuration on a Shared Port Adapter |
397 |
| Example of a Syslog Message |
397 |
| Verification Example for Link Noise Monitoring |
397 |
| Configuring L2 Virtual Private Networks |
399 |
| Feature History for L2VPN |
401 |
| Supported L2VPN Transport Types |
401 |
| Prerequisites for L2VPN: AToM |
402 |
| Supported Line Cards |
402 |
| Restrictions for L2VPN |
403 |
| Standards and RFCs |
403 |
| MIBs |
404 |
| NSF and SSO-L2VPN |
404 |
| Checkpointing AToM Information |
405 |
| Checkpointing Troubleshooting Tips |
405 |
| Prerequisites for NSF/SSO - L2VPN |
405 |
| Neighbor Routers in the MPLS HA Environment |
405 |
| Stateful Switchover |
405 |
| Nonstop Forwarding for Routing Protocols |
406 |
| Restrictions for NSF/SSO - L2VPN |
406 |
| Configuring NSF/SSO - L2VPN |
406 |
| Configuration Examples of NSF/SSO-Layer 2 VPN |
407 |
| L2VPN Local Switching-HDLC/PPP |
408 |
| Prerequisites of L2VPN Local Switching-HDLC/PPP |
408 |
| Restrictions of L2VPN Local Switching-HDLC/PPP |
408 |
| PPP Like-to-Like Local Switching |
408 |
| HDLC Like-to-Like Local Switching |
409 |
| Configuration Tasks and Examples |
409 |
| Configuration Tasks for L2VPN |
410 |
| Setting Up the Pseudowire-AToM Circuit |
410 |
| Configuring ATM AAL5 SDU Support over MPLS |
412 |
| Verifying ATM AAL5 SDU Support over MPLS |
412 |
| Configuring ATM-to-ATM PVC Local Switching |
412 |
| Configuring OAM Cell Emulation for ATM AAL5 SDU Support over MPLS |
413 |
| Configuring OAM Cell Emulation for ATM AAL5 SDU Support over MPLS on PVCs |
414 |
| Configuring OAM Cell Emulation for ATM AAL5 SDU Support over MPLS in VC Class Configuration Mode |
416 |
| Configuring Ethernet over MPLS |
417 |
| Ethernet over MPLS Restrictions |
418 |
| Configuring Ethernet over MPLS in VLAN Mode |
418 |
| Configuring Ethernet over MPLS in Port Mode |
419 |
| IEEE 802.1Q Tunneling for AToM-QinQ |
420 |
| Prerequisites for IEEE 802.1Q Tunneling (QinQ) for AToM |
421 |
| Restrictions for IEEE 802.1Q Tunneling (QinQ) for AToM |
421 |
| Ethernet VLAN Q-in-Q AToM |
421 |
| Configuration Examples |
423 |
| Verifying QinQ AToM |
423 |
| Remote Ethernet Port Shutdown |
423 |
| Restrictions for Configuring Remote Ethernet Port Shutdown |
424 |
| Configuring Remote Ethernet Port Shutdown |
424 |
| Configuring Ethernet over MPLS with VLAN ID Rewrite |
425 |
| Configuring Frame Relay over MPLS |
426 |
| Configuring Frame Relay over MPLS with DLCI-to-DLCI Connections |
426 |
| Configuring Frame Relay over MPLS with Port-to-Port Connections |
427 |
| Enabling Other PE Devices to Transport Frame Relay Packets |
428 |
| Configuring Frame Relay-to-Frame Relay Local Switching |
429 |
| Configuring Frame Relay for Local Switching |
430 |
| Configuring Frame Relay Same-Port Switching |
431 |
| Verifying Layer 2 Local Switching for Frame Relay |
432 |
| Configuring QoS Features |
432 |
| Configuring HDLC and PPP over MPLS |
434 |
| Restrictions for HDLC over MPLS |
434 |
| Restrictions for PPP over MPLS |
434 |
| Configuring HDLC over MPLS or PPP over MPLS |
434 |
| Estimating the Size of Packets Traveling Through the Core Network |
435 |
| Estimating Packet Size-Example |
436 |
| Changing the MTU Size on P and PE Routers |
436 |
| Setting Experimental Bits with AToM |
436 |
| Configuring QoS Features |
438 |
| Monitoring and Maintaining L2VPN |
441 |
| Configuration Example-Frame Relay over MPLS |
442 |
| Any Transport over MPLS-Tunnel Selection |
445 |
| Configuration Example-Any Transport over MPLS: Tunnel Selection |
445 |
| Configuring L2VPN Interworking |
449 |
| Bridged Interworking |
449 |
| Ethernet to VLAN-Bridged Interworking |
450 |
| Configuring L2VPN Interworking |
450 |
| Verifying the Configuration |
451 |
| Configuration Examples of Ethernet to VLAN-Bridged |
451 |
| Ethernet to VLAN over LS-Bridged: Example |
452 |
| Ethernet to VLAN over AToM-Bridged: Example |
452 |
| Routed Interworking |
452 |
| Restrictions for Routed Interworking |
453 |
| Ethernet/VLAN to ATM AAL5 Interworking |
453 |
| Prerequisites of Ethernet/VLAN to ATM AAL5 Interworking |
454 |
| Restrictions of Ethernet/VLAN to ATM AAL5 Interworking |
454 |
| ATM AAL5 to Ethernet Local Switching-Bridged Interworking |
456 |
| ATM AAL5 to VLAN 802.1Q Local Switching-Bridged Interworking |
457 |
| ATM AAL5 to Ethernet Port AToM-Bridged Interworking |
457 |
| ATM AAL5 to Ethernet VLAN 802.1Q AToM-Bridged Interworking |
458 |
| ATM to Ethernet-Routed Interworking |
459 |
| Configuration Tasks and Examples |
460 |
| Local Switching |
460 |
| AToM |
462 |
| Ethernet/VLAN to Frame Relay Interworking |
465 |
| Prerequisites of Ethernet/VLAN to Frame Relay Interworking |
465 |
| Restrictions for Ethernet/VLAN to Frame Relay Interworking |
465 |
| FR DLCI to Ethernet Local Switching-Bridged Interworking |
467 |
| FR DLCI to VLAN 802.1Q Local Switching-Bridged Interworking |
468 |
| FR DLCI to Ethernet Port AToM-Bridged Interworking |
468 |
| FR DLCI to Ethernet VLAN 802.1Q AToM-Bridged Interworking |
469 |
| Frame Relay to Ethernet-Routed Interworking |
470 |
| Configuration Tasks and Examples |
471 |
| Local Switching |
471 |
| AToM |
472 |
| ATM to Frame Relay-Routed Interworking |
475 |
| Configuration Tasks and Examples |
476 |
| Local Switching |
476 |
| AToM |
477 |
| Verifying L2VPN Interworking |
478 |
| Configuring Multilink Point-to-Point Protocol Connections |
479 |
| Multilink Point-to-Point Protocol |
479 |
| Feature History for Multilink PPP |
480 |
| MLP Bundles |
481 |
| Restrictions for MLP Bundles |
481 |
| MLP Bundles and PPP Links |
481 |
| System Limits for MLP Bundles |
482 |
| Types of MLP Bundle Interfaces |
482 |
| MLP Groups |
483 |
| MLP Group Interfaces and Virtual Template Interfaces |
484 |
| How MLP Determines the Link a Bundle Joins |
484 |
| IP Addresses on MLP-Enabled Links |
485 |
| Valid Ranges for MLP Interfaces |
486 |
| MLP Overhead |
487 |
| Configuration Commands for MLP |
487 |
| interface multilink Command |
487 |
| ppp multilink Command |
488 |
| ppp multilink fragment-delay Command |
488 |
| ppp multilink interleave Command |
489 |
| ppp multilink fragment disable Command |
490 |
| ppp multilink group Command |
490 |
| MLP over Serial Interfaces |
491 |
| Performance and Scalability for MLP over Serial Interfaces |
492 |
| Restrictions and Limitations for MLP over Serial Interfaces |
492 |
| Single-VC MLP over ATM Virtual Circuits |
493 |
| Performance and Scalability for Single-VC MLP over ATM |
493 |
| Restrictions and Limitations for Single-VC MLP over ATM |
493 |
| Multi-VC MLP over ATM Virtual Circuits |
494 |
| Performance and Scalability for Multi-VC MLP over ATM VCs |
495 |
| Restrictions and Limitations for Multi-VC MLP over ATM VCs |
495 |
| MLP on LNS |
496 |
| About MLP on LNS |
497 |
| PPP multilink links max Command |
499 |
| Performance and Scalability of MLP on LNS |
499 |
| PXF Memory and Performance Impact for MLP on LNS |
499 |
| Scenario 1 |
500 |
| Scenario 2 |
500 |
| Restrictions and Limitations for MLP on LNS |
501 |
| Configuring MLP on LNS |
502 |
| MLPoE LAC Switching |
502 |
| Restrictions for MLPoE LAC Switching |
502 |
| MLPoE at PTA |
503 |
| ATM Overhead Accounting |
504 |
| Prerequisites of MLPoE at PTA |
504 |
| Restrictions of MLPoE at PTA |
504 |
| Memory and Performance Impact of MLPoE at PTA |
505 |
| MLP-Based Link Fragmentation and Interleaving |
505 |
| Configuring MLP Bundles and Member Links |
505 |
| Creating an MLP Bundle Interface |
506 |
| Configuration Example for Creating an MLP Bundle Interface |
507 |
| Enabling MLP on a Virtual Template |
508 |
| Configuration Example for Enabling MLP on a Virtual Template |
509 |
| Adding a Serial Member Link to an MLP Bundle |
509 |
| Adding an ATM Member Link to an MLP Bundle |
510 |
| Configuration Example for Adding ATM Links to an MLP Bundle |
512 |
| Moving a Member Link to a Different MLP Bundle |
513 |
| Removing a Member Link from an MLP Bundle |
514 |
| Changing the Default Endpoint Discriminator |
515 |
| Configuration Example for Changing the Endpoint Discriminator |
515 |
| Configuration Examples for Configuring MLP |
516 |
| Configuration Example for Configuring MLP over Serial Interfaces |
516 |
| Configuration Example for Configuring Single-VC MLP over ATM |
516 |
| Configuration Example for Configuring Multi-VC MLP over ATM |
517 |
| Configuration Example for MLP on LNS |
517 |
| Configuration Example for MLPoE LAC Switching |
519 |
| Configuration Examples of MLPoE at PTA |
519 |
| Configuring MLPoE over IEEE 802.1Q VLANs |
520 |
| Configuring MLPoE through RADIUS |
520 |
| Verifying and Monitoring MLP Connections |
521 |
| Bundle Counters and Link Counters |
522 |
| Verification Examples for MLP Connections |
522 |
| Verification Example for the show interfaces multilink Command |
522 |
| Verification Example for the show ppp multilink Command |
523 |
| Verification Example for the show interfaces multilink stat Command |
524 |
| Related Documentation |
524 |
| Configuring Gigabit EtherChannel Features |
527 |
| Feature History for Gigabit EtherChannel |
528 |
| Prerequisites for Gigabit EtherChannel Configuration |
529 |
| Restrictions for Gigabit EtherChannel Configuration |
529 |
| Configuring QoS Service Policies on GEC Interfaces |
529 |
| Restrictions for QoS Service Policies on GEC Bundles |
531 |
| Configuration Examples |
531 |
| Configuration Example for Using the VLAN Group Feature to Apply QoS on Member Links |
531 |
| Configuration Example for Applying QoS on GEC Bundle Subinterfaces |
532 |
| Configuring Policy Based Routing Support on a GEC Bundle |
533 |
| Restriction for Configuring PBR Support on a GEC Bundle |
533 |
| Configuring IEEE 802.1Q and QinQ Support on GEC Bundle |
533 |
| Prerequisites for Configuring IEEE 802.1Q and QinQ Support |
533 |
| Restrictions for Configuring IEEE 802.1Q and QinQ Support on GEC Bundle |
533 |
| Configuration Tasks for IEEE 802.1Q and QinQ on Subinterfaces |
534 |
| Configuration Examples |
534 |
| Configuring MVPN Support on GEC Bundle |
535 |
| Configuration Tasks and Examples |
535 |
| Configuring PPPoX Support on a GEC Bundle |
535 |
| Restrictions for Configuring PPPoX Support for GEC Bundle |
535 |
| Configuration Tasks |
536 |
| Configuration Examples |
536 |
| Configuring High Availability Support on GEC Bundle |
537 |
| Configuring 8 Member Links per GEC Bundle |
537 |
| Configuration Tasks |
537 |
| Configuring VLAN-Based Load Balancing |
538 |
| Restrictions for VLAN-Based Load Balancing |
538 |
| Configuration Tasks |
539 |
| Configuration Example |
540 |
| Configuration Example of VLAN-Based Load Balancing |
540 |
| Configuration Example for Applying VLAN QoS on GEC Bundle Subinterfaces |
541 |
| Configuration Example for Using the VLAN Group Feature to Apply QoS |
542 |
| Configuring IP Version 6 |
545 |
| Feature History for IPv6 |
545 |
| Supported Features |
545 |
| Limitations for IPv6 |
547 |
| IPv6 Extended ACLs |
548 |
| Prerequisites |
548 |
| Restrictions |
548 |
| Configuring IPv6 Traffic Filtering |
549 |
| Creating and Configuring the IPv6 ACL |
549 |
| Applying the IPv6 ACL to an Interface |
550 |
| Verifying IPv6 ACLs |
551 |
| Create and Apply IPv6 ACL: Examples |
552 |
| Configuring Template ACLs |
553 |
| Feature History for Template ACLs |
554 |
| Configuration Tasks for Template ACLs |
555 |
| Configuring the Maximum Size of Template ACLs (Optional) |
555 |
| Configuring ACLs Using RADIUS Attribute 242 |
555 |
| Monitoring and Maintaining the Template ACL Configuration |
557 |
| Configuration Examples for Template ACLs |
557 |
| access-list template Command |
557 |
| access-list template Command History |
558 |
| access-list template Command Modes |
558 |
| Usage Guidelines for the access-list template Command |
558 |
| Examples |
558 |
| show access-list template Command |
558 |
| show access-list template Command Modes |
559 |
| show access-list template Command History |
559 |
| Examples |
559 |
| Protecting the Router from DoS Attacks |
563 |
| IP Options Selective Drop |
563 |
| Feature History for IP Options Selective Drop |
564 |
| Restrictions for IP Options Selective Drop |
564 |
| How to Configure IP Options Selective Drop |
564 |
| Dropping Packets with IP Options |
564 |
| Verifying IP Options Packets |
565 |
| Configuration Examples for IP Options Selective Drop |
565 |
| Dropping IP Options Packets: Example |
565 |
| Verifying IP Options Handling: Example |
566 |
| Related Documentation |
566 |
| IP Tunneling |
567 |
| GRE Tunnel IP Source and Destination VRF Membership |
567 |
| Tunnel VRF |
567 |
| VRF-Aware VPDN Tunnels |
568 |
| Feature History for GRE Tunnel IP Source and Destination VRF Membership |
568 |
| Restrictions for GRE Tunnel IP Source and Destination VRF Membership |
569 |
| How to Configure GRE Tunnel IP Source and Destination VRF Membership |
569 |
| Configuring Tunnel VRF |
569 |
| Configuring VRF-Aware VPDN Tunnels |
570 |
| Configuration Examples |
570 |
| Configuration Example for Tunnel VRF |
570 |
| Configuration Examples for VRF-Aware VPDN Tunnels |
571 |
| RADIUS Attributes |
573 |
| RADIUS IETF Attributes |
573 |
| Vendor-Proprietary RADIUS Attributes |
576 |
| Vendor-Specific RADIUS IETF Attributes |
580 |
| Glossary |
585 |
1
545
546
547
548
549
550
551
552
553
554
555
