194
[Router-Virtual-Template1] ip address 10.210.0.1 24
[Router-Virtual-Template1] quit
# Enable PPPoE server on GigabitEthernet 2/0/1 and bind the interface to Virtual-Template 1.
[Router] interface gigabitethernet 2/0/1
[Router-GigabitEthernet2/0/1] pppoe-server bind virtual-template 1
[Router-GigabitEthernet2/0/1] quit
# Configure ACL 2000 to identify packets from subnet 10.210.0.0/24.
[Router] acl basic 2000
[Router-acl-ipv4-basic-2000] rule 0 permit source 10.210.0.0 0.0.0.255
[Router-acl-ipv4-basic-2000] quit
# Create address group 1. Add public address 111.8.0.200, specify the port range as 1024 to
65535, and set the port block size to 10.
[Router] nat address-group 1
[Router-address-group-1] port-block block-size 10
[Router-address-group-1] port-range 1024 65535
[Router-address-group-1] address 111.8.0.200 111.8.0.200
[Router-address-group-1] quit
# Configure outbound dynamic NAT444 on GigabitEthernet 2/0/2 to use address group 1 to
translate packets permitted by ACL 2000.
[Router] interface gigabitethernet 2/0/2
[Router-GigabitEthernet2/0/2] ip address 111.8.0.101 255.255.255.0
[Router-GigabitEthernet2/0/2] nat outbound 2000 address-group 1
[Router-GigabitEthernet2/0/2] quit
Verifying the configuration
# Initiate a connection from the PPPoE client by entering the username and password.
# Execute the display ppp access-user command to display PPP user information, including the
private IP address, translated public IP address, and port block. (Details not shown.)
# Verify that a dynamic NAT444 entry has been created for the user.
[Router] display nat port-block dynamic
Local VPN Local IP Global IP Port block Connections
--- 10.210.0.4 111.8.0.200 1024-1323 0
Total entries found: 1
To Next Page
Loading...
