[AusNOG] Which NBN RSP are using PPPoE vs IP
Chris Kawchuk
juniperdude at gmail.com
Wed Apr 6 11:56:30 EST 2016
Hi Jason,
Yep, very familiar with the setup. My question was more on whether or not the PPPoE Option 82 (Containing the NBN-NTU injected AVC ID) gets passed through to the ISP LNS; or if it dies at the LAC. (Since there's a protocol translation going on here....) Its NBN 'hijacking' the PPPoE PADI/PADO discovery process which adds that field on behalf of the end-user (nice of them, eh?)
Agreed "sorting" of the end-subsciber can be done on @realm, or by static-mapping of S/C Tags coming in from the POI. (many ways to skin the cat...); either way, agreed, the VPDN tunnel (L2TP) is setup to the ISP LNS and no authentication is done at the LAC side of things.
Agreed, worthy of a PCAP here on the ingress side of the LNS to see if that gets passed, or if't just the L2TP credentials only.
- Ck.
On 6 Apr 2016, at 11:51 am, Jason Mikronis <jason at ausbbs.com.au> wrote:
> Forwarding is done like this - PPPoE - AAPT LAC - L2TP - ISP LNS
>
> I have not checked with AAPT, but in a past life, forwarding at the LAC was done without checking passwords based on conditions (realm for example) and then L2F to the ISP LNS. If the L2TP session to the ISP was up, so was the PPPoE session. The only "issue" I can see is potential for too many MACs being presented to a single interface, but there should be no problems designing around that.
>
> It is worthy of more investigation.
More information about the AusNOG
mailing list