PPP authentication

Unanswered Question
Jun 16th, 2007
User Badges:

Hi Experts,


If i have two routers (point-to-point), one of them configured with ppp authentication CHAP and the other configured with ppp authentication PAP , the line protocol will be down or up ?


Regards,

Ibrahim Alwahidi

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (2 ratings)
Loading.
Edison Ortiz Sat, 06/16/2007 - 10:54
User Badges:
  • Super Bronze, 10000 points or more
  • Hall of Fame,

    Founding Member

It will be up.


Router 1


username R2 password CISCO

int s0/0

en ppp

ppp authentication chap

ppp pap sent-username R1 password CISCO


Router 2


username R1 password CISCO

int s0/0

en ppp

ppp authentication pap

ppp chap hostname R2

ppp chap password CISCO




mohammedmahmoud Sat, 06/16/2007 - 12:38
User Badges:
  • Green, 3000 points or more

Hi Edison,


You are absolutely correct, the case you are suggesting shall work, as R2 requires any PPP initiated to it to be PAP (ppp authentication pap) authenticated and since R1 can authenticate itself using PAP it will succeed and vice versa for R1 with CHAP (ppp authentication chap), i guessed that the original poster's question involved that each side is only configured with one different method as in and out.



HTH,

Mohammed Mahmoud.

alwahidi22 Sat, 06/16/2007 - 13:58
User Badges:

Thanx Edison,


But i want to ask u another question about that can i put any username that i want for example

instead of using username R1 , i want to use username Linux...


Regards,

Ibrahim Alwahidi

Edison Ortiz Sat, 06/16/2007 - 16:01
User Badges:
  • Super Bronze, 10000 points or more
  • Hall of Fame,

    Founding Member

Then you need to create an username Linux on R2.

mohammedmahmoud Sat, 06/16/2007 - 21:11
User Badges:
  • Green, 3000 points or more

Hi Ibrahim,


Like Edison has said, you can change the username like you can on the calling router (the router initiating the session), but always keep in mind the router authenticating the other router (we'll call it the server) must have a local entry of this username in order to be able to authenticate the calling router with, as i've told you before on the other thread think of it as a client server issue.



HTH,

Mohammed Mahmoud.

Edison Ortiz Sat, 06/16/2007 - 16:40
User Badges:
  • Super Bronze, 10000 points or more
  • Hall of Fame,

    Founding Member

Router 1


username R2 password CISCO

int s0/0

en ppp

ppp authentication chap

ppp pap sent-username Linux password CISCO


Router 2


username Linux password CISCO

int s0/0

en ppp

ppp authentication pap

ppp chap hostname R2

ppp chap password CISCO

Actions

This Discussion