No relevant resource is found in the selected language.

This site uses cookies. By continuing to browse the site you are agreeing to our use of cookies. Read our privacy policy>Search

Reminder

To have a better experience, please upgrade your IE browser.

upgrade

Configuration Guide - Security

S9300, S9300E, and S9300X V200R011C10

This document describes the configurations of Security, including ACL, reflective ACL, local attack defense, MFF, attack defense, traffic suppression and storm control, ARP security, port security, DHCP snooping, ND snooping, PPPoE+, IPSG, SAVI, URPF, keychain, separating the management plane from the service plane, security risks.
Rate and give feedback :
Huawei uses machine translation combined with human proofreading to translate this document to different languages in order to help you better understand the content of this document. Note: Even the most advanced machine translation cannot match the quality of professional translators. Huawei shall not bear any responsibility for translation accuracy and it is recommended that you refer to the English document (a link for which has been provided).
PPPoE Users Cannot Go Online

PPPoE Users Cannot Go Online

Fault Description

PPPoE users cannot go online after the PPPoE function is configured.

Common Causes

Possible causes are as follows:
  • The uplink interface is untrusted.
  • The policy for processing original fields in user-side PPPoE packets is incorrect.
  • The format of the fields added to PPPoE packets is incorrect.

Procedure

  1. Check whether the uplink interface connected to the PPPoE server is a trusted interface.

    If not, the device discards PPPoE packets, and PPPoE users cannot go online.

    Enter the uplink interface view, and run the display this command to check whether the pppoe uplink-port trusted command was executed.
    • If not, the uplink interface is an untrusted interface. Run the pppoe uplink-port trusted command to configure the uplink interface as the trusted interface.
    • If so, go to the next step.

  2. Check whether the policy for processing original fields in user-side PPPoE packets meets the service requirements.

    Run the display this command in the system view and in the interface view of the interface connected to PPPoE users to check whether the pppoe intermediate-agent information policy command was executed in the system and on the interface.

    • If the policy for processing original fields in PPPoE packets is configured in the system and on the interface, the policy configured on the interface takes effect.
    • If the policy for processing original fields in PPPoE packets is not configured in the system or on the interface, the system replaces the original fields in PPPoE packets according to the configured field format by default.

    Check whether the policy for processing original fields in user-side PPPoE packets meets the service requirements.

    • If not, run the pppoe intermediate-agent information policy { drop | keep | replace } command to configure a correct policy.
    • If so, go to the next step.

  3. Verify the format of the fields added to PPPoE packets.

    Run the display pppoe intermediate-agent information format to check whether the format of the fields added to PPPoE packets is consistent with that on the PPPoE server.

    If not, run the pppoe intermediate-agent information [ vlan vlan-id ] [ ce-vlan cevlan-id ] format { circuit-id | remote-id } { common | extend | user-defined text } to configure the correct format.

Translation
Download
Updated: 2019-04-01

Document ID: EDOC1000178410

Views: 125954

Downloads: 25

Average rating:
This Document Applies to these Products
Related Documents
Related Version
Share
Previous Next