Cisco 10000 Series Router Software
Configuration Guide
June, 2010
Americas Headquarters
Cisco Systems, Inc.
170 West Tasman Drive
San Jose, CA 95134-1706
USA
http://www.cisco.com
Tel: 408 526-4000
800 553-NETS (6387)
Fax: 408 527-0883
Text Part Number: OL-2226-23
THE SPECIFICATIONS AND INFORMATION REGARDING THE PRODUCTS IN THIS MANUAL ARE SUBJECT TO CHANGE WITHOUT NOTICE. ALL
STATEMENTS, INFORMATION, AND RECOMMENDATIONS IN THIS MANUAL ARE BELIEVED TO BE ACCURATE BUT ARE PRESENTED WITHOUT
WARRANTY OF ANY KIND, EXPRESS OR IMPLIED. USERS MUST TAKE FULL RESPONSIBILITY FOR THEIR APPLICATION OF ANY PRODUCTS.
THE SOFTWARE LICENSE AND LIMITED WARRANTY FOR THE ACCOMPANYING PRODUCT ARE SET FORTH IN THE INFORMATION PACKET THAT
SHIPPED WITH THE PRODUCT AND ARE INCORPORATED HEREIN BY THIS REFERENCE. IF YOU ARE UNABLE TO LOCATE THE SOFTWARE LICENSE
OR LIMITED WARRANTY, CONTACT YOUR CISCO REPRESENTATIVE FOR A COPY.
The Cisco implementation of TCP header compression is an adaptation of a program developed by the University of California, Berkeley (UCB) as part of UCB’s public
domain version of the UNIX operating system. All rights reserved. Copyright © 1981, Regents of the University of California.
NOTWITHSTANDING ANY OTHER WARRANTY HEREIN, ALL DOCUMENT FILES AND SOFTWARE OF THESE SUPPLIERS ARE PROVIDED “AS IS” WITH
ALL FAULTS. CISCO AND THE ABOVE-NAMED SUPPLIERS DISCLAIM ALL WARRANTIES, EXPRESSED OR
LIMITATION, THOSE OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT OR ARISING FROM A COURSE OF
DEALING, USAGE, OR TRADE PRACTICE.
IN NO EVENT SHALL CISCO OR ITS SUPPLIERS BE LIABLE FOR ANY INDIRECT, SPECIAL, CONSEQUENTIAL, OR INCIDENTAL DAMAGES, INCLUDING,
WITHOUT LIMITATION, LOST PROFITS OR LOSS OR DAMAGE TO DATA ARISING OUT OF THE USE OR INABILITY TO USE THIS MANUAL, EVEN IF CISCO
OR ITS SUPPLIERS HAVE BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES.
Cisco and the Cisco Logo are trademarks of Cisco Systems, Inc. and/or its affiliates in the U.S. and other countries. A listing of Cisco's trademarks can be found at
www.cisco.com/go/trademarks. Third party trademarks mentioned are the property of their respective owners. The use of the word partner does not imply a partnership
relationship between Cisco and any other company. (1005R)
IMPLIED, INCLUDING, WITHOUT
Any Internet Protocol (IP) addresses used in this document are not intended to be actual addresses. Any examples, command display output, and figures included in the
document are shown for illustrative purposes only. Any use of actual IP addresses in illustrative content is unintentional and coincidental.
Cisco 10000 Series Router Software Configuration Guide
Copyright © 2007-2010 Cisco Systems, Inc. All rights reserved.
CONTENTS
About This Guide xxv
Guide Revision History i-xxv
Audience i-xxx
Document Organization i-xxx
Document Conventions i-xxxii
Related Documentation i-xxxiii
RFCs i-xxxiv
Obtaining Documentation, Obtaining Support, and Security Guidelines i-xxxiv
CHAPTER
1 Broadband Aggregation and Leased-Line Overview 1-1
Hardware Requirements 1-1
Checking Hardware and Software Compatibility 1-1
Broadband Architecture Models 1-2
PPP Termination and Aggregation Architectures 1-2
PTA to Virtual Routing and Forwarding Architecture 1-3
PTA to Multiprotocol Label Switching Virtual Private Network Architecture 1-4
L2TP Architectures 1-5
L2TP to Virtual Routing and Forwarding Architecture 1-5
L2TP over MPLS to Virtual Routing and Forwarding Instance 1-6
L2TP Access Concentrator Architecture 1-7
Routed Bridge Encapsulation Architectures 1-7
RBE to Virtual Routing and Forwarding Architecture 1-8
RBE to Multiprotocol Label Switching Virtual Private Network Architecture 1-9
Leased-Line Architecture Models 1-10
Channelized Aggregation 1-10
Frame Relay Aggregation 1-10
ATM Aggregation 1-11
Ethernet Aggregation 1-12
MPLS Provider Edge Applications 1-12
Combined Broadband and Leased-Line Applications 1-13
Load Balancing Architecture Models 1-13
IP and MPLS Applications 1-13
Single Ingress and Single Egress Provider Edge Applications 1-14
Single Ingress and Two Egress Provider Edge Applications 1-14
OL-2226-23
Cisco 10000 Series Router Software Configuration Guide
iii
Contents
Multiple Ingress and Multiple Egress Provider Edge Applications 1-15
New Features, Enhancements, and Changes 1-15
New Features in Cisco IOS Release 12.2(33)XNE3 1-16
New Features in Cisco IOS Release 12.2(33)XNE 1-16
New Features in Cisco IOS Release 12.2(33)SB3 1-18
New Features in Cisco IOS Release 12.2(33)SB2 1-18
New Features in Cisco IOS Release 12.2(33)SB 1-18
New Features in Cisco IOS Release 12.2(31)SB5 1-19
New Features in Cisco IOS Release 12.2(31)SB3 1-19
New Features in Cisco IOS Release 12.2(31)SB2 1-20
New Features in Cisco IOS Release 12.2(28)SB1 1-21
New Features in Cisco IOS Release 12.2(28)SB 1-21
New Features in Cisco IOS Release 12.3(7)XI7 1-25
New Features in Cisco IOS Release 12.3(7)XI3 1-26
New Features in Cisco IOS Release 12.3(7)XI2 1-26
New Features in Cisco IOS Release 12.3(7)XI1 1-26
CHAPTER
2 Scalability and Performance 2-1
Line Card VC Limitations 2-1
Limitations and Restrictions 2-3
Scaling Enhancements in Cisco IOS Release 12.2(33)XNE 2-4
Scaling Enhancements in Cisco IOS Release 12.2(33)SB 2-5
Layer 4 Redirect Scaling 2-5
Scaling Enhancements in Cisco IOS Release 12.3(7)XI1 2-6
FIB Scaling 2-6
Policy-Map Scaling 2-6
Queue Scaling 2-7
Scaling Enhancements in Cisco IOS Release 12.3(7)XI2 2-7
Queue Scaling 2-7
VC Scaling 2-8
Scaling Enhancements in Cisco IOS Release 12.2(28)SB 2-8
Configuring the Cisco 10000 Series Router for High Scalability 2-8
Configuring Parameters for RADIUS Authentication 2-9
Configuring L2TP Tunnel Settings 2-9
VPDN Group Session Limiting 2-10
Configuring the PPP Authentication Timeout 2-10
Disabling Cisco Discovery Protocol 2-10
Disabling Gratuitous ARP Requests 2-11
Configuring a Virtual Template Without Interface-Specific Commands 2-11
Cisco 10000 Series Router Software Configuration Guide
iv
OL-2226-23
Monitoring PPP Sessions Using the SNMP Management Tools 2-13
SNMP Process and High CPU Utilization 2-13
CISCO-ATM-PVCTRAP-EXTN-MIB 2-14
Configuring the Trunk Interface Input Hold Queue 2-15
Configuring no atm pxf queuing 2-15
Configuring atm pxf queuing 2-16
Configuring keepalive 2-17
Enhancing Scalability of Per-User Configurations 2-17
Setting VRF and IP Unnumbered Interface Configurations in User Profiles 2-18
Setting VRF and IP Unnumbered Interface Configuration in a Virtual Interface Template 2-18
Redefining User Profiles to Use the ip:vrf-id and ip:ip-unnumbered VSAs 2-18
Placing PPPoA Sessions in Listening Mode 2-19
Scaling L2TP Tunnel Configurations 2-19
Using the RADIUS Attribute cisco-avpair="lcp:interface-config" 2-20
Using Full Virtual Access Interfaces 2-20
Contents
CHAPTER
Preventing Full Virtual Access Interfaces 2-21
3 Configuring Remote Access to MPLS VPN 3-1
MPLS VPN Architecture 3-2
Access Technologies 3-3
PPP over ATM to MPLS VPN 3-4
PPP over Ethernet to MPLS VPN 3-5
RBE over ATM to MPLS VPN 3-7
MPLS VPN ID 3-7
DHCP Relay Agent Information Option—Option 82 3-9
DHCP Relay Support for MPLS VPN Suboptions 3-9
Feature History for RA to MPLS VPN 3-10
Restrictions for RA to MPLS VPN 3-10
Prerequisites for RA to MPLS VPN 3-11
Configuration Tasks for RA to MPLS VPN 3-12
Configuring the MPLS Core Network 3-12
Enabling Label Switching of IP Packets on Interfaces 3-12
Configuring Virtual Routing and Forwarding Instances 3-13
Associating VRFs 3-13
Configuring Multiprotocol BGP PE to PE Routing Sessions 3-14
Configuring Access Protocols and Connections 3-16
Configuring a Virtual Template Interface 3-17
Configuring PPP over ATM Virtual Connections and Applying Virtual Templates 3-18
Configuring PPPoE over ATM Virtual Connections and Applying Virtual Templates 3-18
OL-2226-23
Cisco 10000 Series Router Software Configuration Guide
v
Contents
Configuring PPPoE over Ethernet Virtual Connections and Applying Virtual Templates 3-20
Configuring RBE over ATM Virtual Connections 3-22
Configuring and Associating Virtual Private Networks 3-28
Configuring Virtual Private Networks 3-28
Associating VPNs with a Virtual Template Interface 3-28
Configuring RADIUS User Profiles for RADIUS-Based AAA 3-30
Verifying VPN Operation 3-30
Configuration Examples for RA to MPLS VPN 3-30
PPPoA to MPLS VPN Configuration Example 3-31
PPPoE to MPLS VPN Configuration Example 3-34
RBE to MPLS VPN Configuration Example 3-38
Monitoring and Maintaining an MPLS Configuration 3-39
Verifying the Routing Protocol Is Running 3-40
Verifying MPLS 3-40
Verifying Connections Between Neighbors 3-40
Verifying Label Distribution 3-41
Verifying Label Bindings 3-42
Verifying Labels Are Set 3-43
CHAPTER
Monitoring and Maintaining the MPLS VPN 3-43
Verifying VRF Configurations 3-44
Verifying the Routing Table 3-44
Verifying the PE to PE Routing Protocols 3-45
Verifying the PE to CE Routing Protocol 3-46
Verifying the MPLS VPN Labels 3-46
Testing the VRF 3-46
Monitoring and Maintaining PPPoX to MPLS VPN 3-47
Monitoring and Maintaining RBE to MPLS VPN 3-48
4 Configuring Multiprotocol Label Switching 4-1
BGP Multipath Load Sharing for eBGP and iBGP in an MPLS VPN 4-1
Feature History for BGP Multipath Load Sharing for eBGP and iBGP in an MPLS VPN 4-2
Restrictions for BGP Multipath Load Sharing for eBGP and iBGP in an MPLS VPN 4-3
Prerequisites for BGP Multipath Load Sharing for eBGP and iBGP in an MPLS VPN 4-3
IGP Convergence Acceleration 4-3
Configuring IGP Convergence Acceleration 4-4
Configuring BGP Multipath Load Sharing for eBGP and iBGP in an MPLS VPN 4-4
Configuring Multipath Load Sharing for eBGP and iBGP 4-5
Verifying Multipath Load Sharing for eBGP and iBGP 4-5
Configuration Examples for BGP Multipath Load Sharing for eBGP and iBGP in an MPLS VPN 4-5
Cisco 10000 Series Router Software Configuration Guide
vi
OL-2226-23
eBGP and iBGP Multipath Load Sharing Configuration Example 4-6
Verifying eBGP and iBGP Multipath Load Sharing 4-6
Monitoring and Maintaining BGP Multipath Load Sharing for eBGP and iBGP 4-7
IPv6 VPN over MPLS 4-7
Feature History for IPv6 VPN over MPLS 4-8
Prerequisites for Implementing IPv6 VPN over MPLS 4-8
Restrictions for Implementing IPv6 VPN over MPLS 4-9
Configuration Tasks for Implementing IPv6 VPN over MPLS 4-9
BGP Features 4-10
IPv6 Internet Access 4-11
VRF-Aware Router Applications 4-12
VRF-Lite 4-12
QoS Features 4-12
Configuration Example for Implementing IPv6 VPN over MPLS 4-13
Monitoring and Maintaining IPv6 VPN over MPLS 4-15
Contents
Session Limit Per VRF 4-15
Application of VPDN Parameters to VPDN Groups 4-16
VPDN Template Configuration 4-17
Feature History for Session Limit Per VRF 4-17
Restrictions for Session Limit Per VRF 4-17
Prerequisites for Session Limit Per VRF 4-17
Configuring Session Limit Per VRF 4-18
Verifying a Session Limit Per VRF Configuration 4-19
Configuration Examples for Session Limit Per VRF 4-19
Monitoring and Maintaining Session Limit Per VRF 4-21
Half-Duplex VRF 4-21
Upstream and Downstream VRFs 4-22
Reverse Path Forwarding Check Support 4-23
Feature History for Half-Duplex VRF 4-23
Restrictions for Half-Duplex VRF 4-23
Prerequisites for Half-Duplex VRF 4-23
Configuration Tasks for Half-Duplex VRF 4-24
Configuring Upstream and Downstream VRFs on the L2TP Access Concentrator and PE
Router 4-24
Associating VRFs 4-25
Configuring RADIUS 4-26
Configuration Examples for Half-Duplex VRF 4-26
Hub and Spoke Sample Configuration with Half-Duplex VRFs 4-27
RADIUS Sample Configuration 4-28
Monitoring and Maintaining Half-Duplex VRF 4-29
OL-2226-23
Cisco 10000 Series Router Software Configuration Guide
vii
Contents
CHAPTER
5 Configuring the Layer 2 Tunnel Protocol Access Concentrator and Network Server 5-1
IP Reassembly 5-1
Feature History for IP Reassembly 5-2
Layer 2 Access Concentrator 5-2
Tunnel Sharing 5-4
Tunnel Service Authorization 5-4
Tunnel Selection 5-4
Sessions per Tunnel Limiting 5-5
Session Load Balancing 5-6
Session Load Failover 5-6
Feature History for LAC 5-6
Restrictions for LAC 5-7
Required Configuration Tasks for LAC 5-7
Enabling the LAC to Look for Tunnel Definitions 5-7
Optional Configuration Tasks for LAC 5-7
Enabling Sessions with Different Domains to Share the Same Tunnel 5-8
Enabling the LAC to Conduct Tunnel Service Authorization 5-8
Configuring Sessions Per Tunnel Limiting on the LAC 5-12
RADIUS Server Optional Configuration Tasks for LAC 5-13
Enabling Tunnel Sharing for RADIUS Services 5-13
Enabling the RADIUS Server to Conduct Tunnel Service Authorization 5-14
Configuring Sessions Per Tunnel Limiting in the RADIUS Service Profile 5-16
Configuration Example for LAC 5-17
Monitoring and Maintaining LAC 5-21
viii
L2TP Network Server 5-22
Virtual Template Interface 5-23
Virtual Routing and Forwarding Instance 5-23
Per VRF AAA 5-23
Private Servers 5-24
RADIUS Attribute Screening 5-24
Packet Fragmentation 5-24
Tunnel Accounting 5-25
Tunnel Authentication 5-25
Named Method Lists 5-27
Framed-Route VRF Aware 5-27
Feature History for LNS 5-28
Restrictions for the LNS 5-28
Prerequisites for LNS 5-28
Required Configuration Tasks for LNS 5-29
Cisco 10000 Series Router Software Configuration Guide
OL-2226-23
Configuring the Virtual Template Interface 5-29
Configuring the LNS to Initiate and Receive L2TP Traffic 5-29
Optional Configuration Tasks for LNS 5-30
Configuring per VRF AAA Services 5-31
Configuring a VRF on the LNS 5-36
Configuring Sessions per Tunnel Limiting on the LNS 5-36
Configuring RADIUS Attribute Accept or Reject Lists 5-37
Configuring the LNS for RADIUS Tunnel Accounting 5-39
Configuring the LNS for RADIUS Tunnel Authentication 5-42
Configuration Examples for LNS 5-45
Managed LNS Configuration Example 5-45
Tunnel Accounting Configuration Examples 5-47
Tunnel Authentication Configuration Examples 5-50
Monitoring and Maintaining LNS 5-51
Contents
CHAPTER
6 Configuring PPPoE over Ethernet and IEEE 802.1Q VLAN 6-1
PPPoE over Ethernet 6-1
Feature History for PPPoE over Ethernet 6-2
Restrictions for PPPoE over Ethernet 6-2
Configuration Tasks for PPPoE over Ethernet 6-2
Configuring a Virtual Template Interface 6-2
Creating an Ethernet Interface and Enabling PPPoE 6-3
Configuring PPPoE in a VPDN Group 6-3
Configuring PPPoE in a BBA Group 6-3
Configuration Example for PPPoE over Ethernet 6-5
Static MAC Address for PPPoE 6-5
Feature History for Static MAC Address for PPPoE 6-6
PPPoE over IEEE 802.1Q VLANs 6-7
Feature History for PPPoE over IEEE 802.1Q VLANs 6-7
Restrictions for PPPoE over IEEE 802.1Q VLANs 6-7
Configuration Tasks for PPPoE over IEEE 802.1Q VLANs 6-7
Configuring a Virtual Template Interface 6-8
Creating an Ethernet 802.1Q Encapsulated Subinterface and Enabling PPPoE 6-8
Configuring PPPoE in a VPDN Group 6-8
Configuring PPPoE in a BBA Group 6-9
Configuration Examples for PPPoE over IEEE 802.1Q VLANs 6-10
Verifying PPPoE over Ethernet and IEEE 802.1Q VLAN 6-11
Clearing PPPoE Sessions 6-12
TCP MSS Adjust 6-12
OL-2226-23
Cisco 10000 Series Router Software Configuration Guide
ix
Contents
Feature History for TCP MSS Adjust 6-12
Information about TCP MSS Adjust 6-12
Restrictions for TCP MSS Adjust 6-13
Configuration Task for TCP MSS Adjust 6-13
TCP MSS Adjustment Configuration: Examples 6-14
VLAN Range 6-15
Feature History for VLAN Range 6-15
Restrictions for VLAN Range 6-16
Configuration Task for VLAN Range 6-16
Configuring a Range of VLAN Subinterfaces 6-16
Configuration Examples for VLAN Range 6-17
Verifying the Configuration of a Range of Subinterfaces 6-18
CHAPTER
CHAPTER
7 Configuring IP Unnumbered on IEEE 802.1Q VLANs 7-1
Feature History for IP Unnumbered on VLANs 7-2
Benefits for IP Unnumbered on VLANs 7-2
Restrictions for IP Unnumbered on VLANs 7-3
Configuration Tasks for IP Unnumbered on VLANs 7-3
Configuring IP Unnumbered for an Ethernet VLAN Subinterface 7-3
Configuring IP Unnumbered for a Range of Ethernet VLAN Subinterfaces 7-4
Configuration Examples for IP Unnumbered on VLANs 7-4
Monitoring and Maintaining IP Unnumbered Ethernet VLAN Subinterfaces 7-5
8 Configuring ATM Permanent Virtual Circuit Autoprovisioning 8-1
ATM PVC Autoprovisioning 8-1
Local Template-Based ATM PVC Provisioning 8-2
Feature History for Local Template-Based ATM PVC Provisioning 8-2
ATM Interface Oversubscription 8-2
VC Class 8-3
ATM VC Scaling and VC Assignment 8-4
When SAR the Page Limit is Reached 8-5
OC-12 ATM Line Card and VC Scaling 8-5
Feature History for ATM PVC Autoprovisioning 8-5
Restrictions for ATM PVC Autoprovisioning 8-5
Configuration Tasks for ATM PVC Autoprovisioning 8-6
Creating an On-Demand PVC Using a VC Class 8-6
Creating an On-Demand PVC Directly 8-8
Creating an On-Demand PVC With Infinite Range 8-11
Monitoring and Maintaining ATM PVC Autoprovisioning 8-12
Cisco 10000 Series Router Software Configuration Guide
x
OL-2226-23
Configuration Example for ATM PVC Autoprovisioning 8-13
Variable Bit Rate Non-Real Time Oversubscription 8-14
Feature History for VBR-nrt Oversubscription 8-15
Restrictions for VBR-nrt Oversubscription 8-15
Configuration Tasks for VBR-nrt Oversubscription 8-17
Configuring VBR-nrt Oversubscription 8-17
Verifying ATM PVC Oversubscription 8-17
Configuration Example for ATM PVC Oversubscription 8-18
Contents
CHAPTER
CHAPTER
9 Configuring Multihop 9-1
Feature History for Multihop 9-2
Restrictions for Multihop 9-3
Required Configuration Tasks for Multihop 9-3
Enabling VPDN and Multihop Functionality 9-3
Terminating the Tunnel from the LAC 9-4
Mapping the Ingress Tunnel Name to an LNS 9-4
Optional Configuration Tasks for Multihop 9-5
Specifying VPDN Tunnel Authorization Searches by Ingress Tunnel Name 9-5
Preserving the Type of Service Field of Encapsulated IP Packets 9-5
Configuring an Accept-Dialin VPDN Group to Preserve IP TOS 9-6
Configuring a Request-Dialout VPDN Group to Preserve IP TOS 9-7
Configuration Examples for Multihop 9-8
Monitoring and Maintaining Multihop Configurations 9-9
10 Configuring Address Pools 10-1
Address Assignment Mechanisms 10-1
Local Address Pool 10-2
Benefits of a Local Address Pool 10-2
Limitations of a Local Address Pool 10-2
RADIUS-Based Address Assignment 10-2
Benefits of RADIUS-Based Address Assignment 10-3
Limitations of RADIUS-Based Address Assignment 10-3
DHCP-Based Address Assignment 10-3
Benefits of DHCP-based Address Assignment 10-3
Limitations of DHCP-Based Address Assignment 10-4
On-Demand Address Pool Manager 10-4
Feature History for On-Demand Address Pool Manager 10-5
Address Allocation for PPP Sessions 10-5
OL-2226-23
Cisco 10000 Series Router Software Configuration Guide
xi
Contents
Subnet Releasing 10-5
On-Demand Address Pools for MPLS VPNs 10-5
Benefits On-Demand Address Pool Manager 10-6
Prerequisites for On-Demand Address Pool Manager 10-6
Required Configuration Tasks for On-Demand Address Pool Manager 10-6
Defining DHCP ODAPs as the Global Default Pooling Mechanism 10-7
Configuring the DHCP Pool as an ODAP 10-7
Configuring the AAA Client 10-8
Configuring RADIUS 10-9
Optional Configuration Tasks for On-Demand Address Pool Manager 10-10
Defining ODAPs on an Interface 10-10
Configuring ODAPs to Obtain Subnets Through IPCP Negotiation 10-11
Disabling ODAPs 10-11
Verifying On-Demand Address Pool Operation 10-12
Configuration Examples for On-Demand Address Pool Manager 10-14
Configuring DHCP ODAPs on an Interface 10-14
Configuring ODAPs to Obtain Subnets Through IPCP Negotiation 10-15
Monitoring and Maintaining an On-Demand Address Pool 10-15
CHAPTER
Overlapping IP Address Pools 10-16
Feature History for Overlapping IP Address Pools 10-17
Restrictions for Overlapping IP Address Pools 10-17
Configuration Tasks for Overlapping IP Address Pools 10-17
Configuring a Local Pool Group for IP Overlapping Address Pools 10-17
Verifying Local Pool Groups for IP Overlapping Address Pools 10-18
Configuration Examples for Overlapping IP Address Pools 10-18
Generic IP Overlapping Address Pools Example 10-18
IP Overlapping Address Pools for VPNs and VRFs Example 10-19
11 Configuring Local AAA Server, User Database—Domain to VRF 11-1
Feature History for Local AAA Server, User Database—Domain to VRF 11-2
Prerequisites for Local AAA Server, User Database—Domain to VRF 11-2
Establishing a PPP Connection 11-2
AAA Authentication 11-2
AAA Authorization 11-3
AAA Accounting 11-3
AAA Attribute Lists 11-4
Converting from RADIUS Format to Cisco IOS AAA Format 11-4
Defining AAA Attribute Lists 11-5
Subscriber Profiles 11-5
AAA Method Lists 11-6
Cisco 10000 Series Router Software Configuration Guide
xii
OL-2226-23
Configuration Tasks for Local AAA Server, User Database—Domain to VRF Using Local
Attributes 11-6
Defining AAA 11-6
Defining RADIUS and Enabling NAS-PORT 11-7
Defining a VRF 11-7
Applying AAA to a Virtual Template 11-7
Defining a Loopback Interface 11-8
Creating an IP Address Pool 11-8
Defining a Subscriber Profile 11-8
Defining an AAA Attribute List 11-8
Verifying Local AAA Server, User Database—Domain to VRF Using Local Attributes 11-9
Configuration Example for Local AAA Server, User Database—Domain to VRF 11-9
Example—VRF with DBS 11-11
Example—VRF with ACL 11-12
Monitoring and Maintaining Local AAA Server, User Database—Domain to VRF 11-12
Contents
CHAPTER
12 Configuring Traffic Filtering 12-1
IP Receive ACLs 12-1
Feature History for IP Receive ACLs 12-2
Restrictions for IP Receive ACLs 12-2
Configuration Tasks for IP Receive ACLs 12-2
Configuring Receive ACLs 12-3
Verifying Receive ACLs 12-3
Configuration Example for IP Receive ACLs 12-3
Time-Based ACLs 12-4
Feature History for Time-Based ACLs 12-4
Restrictions for Time-Based ACLs 12-5
Configuration Tasks for Time-Based ACLs 12-5
Creating a Time Range 12-5
Applying a Time Range to a Numbered Access Control List 12-6
Applying a Time Range to a Named Access Control List 12-7
Monitoring and Maintaining Time-Based ACLs 12-8
Configuration Examples for Time-Based ACLs 12-8
CHAPTER
13 Unicast Reverse Path Forwarding 13-11
Feature History for uRPF 13-12
Prerequisites for uRPF 13-12
Restrictions for uRPF 13-12
Configuring Unicast RPF 13-13
OL-2226-23
Cisco 10000 Series Router Software Configuration Guide
xiii
Contents
Monitoring and Maintaining uRPF 13-14
Configuration Examples of uRPF 13-16
Configuring Loose Mode uRPF 13-17
Configuring Loose Mode uRPF with the allow-self-ping Option 13-17
Configuring Loose Mode uRPF with the allow-default Option 13-18
CHAPTER
14 Configuring Automatic Protection Switching 14-19
Multirouter Automatic Protection Switching 14-19
Feature History for MR-APS 14-20
Restrictions for MR-APS 14-21
Configuration Tasks for MR-APS 14-21
Configuring MR-APS on Unchannelized Line Cards 14-21
Configuring MR-APS on Channelized Line Cards 14-22
Configuring MR-APS with Static Routes 14-23
Configuring MR-APS with Static Routes on Unchannelized Line Cards 14-23
Configuring MR-APS with Static Routes on Channelized Line Cards 14-25
Monitoring and Maintaining the MR-APS Configuration 14-27
Single-router Automatic Protection Switching 14-27
Feature History for SR-APS 14-29
Configuring SR-APS 14-29
Disabling SR-APS 14-29
Monitoring and Maintaining the SR-APS Configuration 14-30
Threshold Commands 14-31
Specifying SR-APS Signal Degrade BER Threshold 14-31
Specifying SR-APS Signal Fail BER Threshold 14-32
CHAPTER
15 Configuring IP Multicast 15-33
Feature History for IP Multicast 15-34
Restrictions for IP Multicast 15-34
Configuration Tasks for IP Multicast Routing 15-34
Enabling IP Multicast Routing 15-35
Enabling PIM on an Interface 15-35
Enabling Dense Mode 15-35
Enabling Sparse Mode 15-36
Enabling Sparse-Dense Mode 15-36
Configuring Native Multicast Load Splitting 15-36
Configuring the Control Plane Protocol Policy 15-36
Cisco 10000 Series Router Software Configuration Guide
xiv
OL-2226-23
Contents
CHAPTER
16 Configuring RADIUS Features 16-39
RADIUS Attribute Screening 16-39
Feature History for RADIUS Attribute Screening 16-40
Restrictions for RADIUS Attribute Screening 16-40
Prerequisites for RADIUS Attribute Screening 16-40
Configuration Tasks for RADIUS Attribute Screening 16-41
Configuration Examples for RADIUS Attribute Screening 16-41
Authorization Accept Configuration Example 16-41
Accounting Reject Configuration Example 16-41
Authorization Reject and Accounting Accept Configuration Example 16-42
Rejecting Required Attributes Configuration Example 16-42
RADIUS Transmit Retries 16-42
Feature History for RADIUS Transmit Retries 16-43
Restrictions for RADIUS Transmit Retries 16-43
Configuring RADIUS Transmit Retries 16-43
Configuration Example for RADIUS Transmit Retries 16-43
Monitoring and Troubleshooting RADIUS Transmit Retries 16-44
Extended NAS-Port-Type and NAS-Port Support 16-44
Feature History for Extended NAS-Port-Type and NAS-Port Support 16-45
NAS-Port-Type (RADIUS Attribute 61) 16-45
NAS-Port (RADIUS Attribute 5) 16-46
NAS-Port-ID (RADIUS Attribute 87) 16-46
Prerequisites for Extended NAS-Port-Type and NAS-Port Attributes Support 16-46
Configuring Extended NAS-Port-Type and NAS-Port Attributes Support 16-47
Verifying Extended NAS-Port-Type and NAS-Port-ID Attributes Support 16-49
Configuration Examples for Extended NAS-Port-Type Attribute Support 16-50
RADIUS Attribute 31: PPPoX Calling Station ID 16-51
Feature History for PPPoX Calling Station ID 16-51
Calling-Station-ID Formats 16-51
Restrictions for PPPoX Calling Station ID 16-52
Related Documents for PPPoX Calling Station ID 16-53
Configuration Tasks for PPPoX Calling Station ID 16-53
Configuring the Calling-Station-ID Format 16-53
Verifying the Calling-Station-ID 16-53
Configuration Example for PPPoX Calling Station ID 16-54
Related Commands for PPPoX Calling Station ID 16-55
RADIUS Packet of Disconnect 16-55
Feature History for RADIUS Packet of Disconnect 16-56
Benefits for RADIUS Packet of Disconnect 16-56
OL-2226-23
Cisco 10000 Series Router Software Configuration Guide
xv
Contents
Restrictions for RADIUS Packet of Disconnect 16-56
Related Documents for RADIUS Packet of Disconnect 16-57
Prerequisites for RADIUS Packet of Disconnect 16-57
Configuration Tasks for RADIUS Packet of Disconnect 16-57
Configuring AAA POD Server 16-58
Verifying AAA POD Server 16-58
Monitoring and Maintaining AAA POD Server 16-59
Configuration Example for RADIUS Packet of Disconnect 16-59
CHAPTER
CHAPTER
17 Cisco 10000 Series Router PXF Stall Monitor 17-61
Feature History of Cisco 10000 Series Router PXF Stall Monitor 17-61
Information about Cisco 10000 Series Router PXF Stall Monitor 17-61
Recovery Actions 17-63
Restrictions for Cisco 10000 Series Router PXF Stall Monitor 17-63
Configuring Cisco 10000 Series Router PXF Stall Monitor 17-64
Configuration Example of Cisco 10000 Series Router PXF Stall Monitor 17-65
18 SSO-BFD 18-69
Feature History of SSO-BFD 18-69
Information about SSO-BFD 18-69
Enhanced Timers 18-70
BFD HA Process 18-70
Early Packet Send 18-70
Restrictions of SSO-BFD 18-71
Monitoring and Maintaining SSO-BFD 18-72
Configuration Examples of SSO-BFD 18-72
SSO-BFD with Static: Example 18-73
SSO-BFD with BGP: Example 18-75
SSO-BFD with EIGRP: Example 18-79
SSO-BFD with ISIS: Example 18-82
SSO-BFD with OSPF: Example 18-84
CHAPTER
19 Configuring Link Noise Monitoring 19-1
About Link Noise Monitoring 19-1
Feature History of Link Noise Monitoring 19-1
Restrictions for Link Noise Monitoring 19-1
Configuration Tasks for Link Noise Monitoring 19-2
Enabling Syslog Messages 19-3
Cisco 10000 Series Router Software Configuration Guide
xvi
OL-2226-23
Configuration Examples for Link Noise Monitoring 19-4
Example of LNM Configuration on a Line Card 19-4
Example of LNM Configuration on a Shared Port Adapter 19-5
Example of a Syslog Message 19-5
Verification Example for Link Noise Monitoring 19-5
Contents
CHAPTER
20 Configuring L2 Virtual Private Networks 20-1
Feature History for L2VPN 20-3
Supported L2VPN Transport Types 20-3
Prerequisites for L2VPN: AToM 20-4
Supported Line Cards 20-4
Restrictions for L2VPN 20-5
Standards and RFCs 20-5
MIBs 20-6
NSF and SSO—L2VPN 20-6
Checkpointing AToM Information 20-7
Checkpointing Troubleshooting Tips 20-7
Prerequisites for NSF/SSO - L2VPN 20-7
Neighbor Routers in the MPLS HA Environment 20-7
Stateful Switchover 20-7
Nonstop Forwarding for Routing Protocols 20-8
Restrictions for NSF/SSO - L2VPN 20-8
Configuring NSF/SSO - L2VPN 20-8
Configuration Examples of NSF/SSO—Layer 2 VPN 20-9
L2VPN Local Switching—HDLC/PPP 20-10
Prerequisites of L2VPN Local Switching—HDLC/PPP 20-10
Restrictions of L2VPN Local Switching—HDLC/PPP 20-10
PPP Like-to-Like Local Switching 20-10
HDLC Like-to-Like Local Switching 20-11
Configuration Tasks and Examples 20-11
Configuration Tasks for L2VPN 20-12
Setting Up the Pseudowire—AToM Circuit 20-12
Configuring ATM AAL5 SDU Support over MPLS 20-14
Verifying ATM AAL5 SDU Support over MPLS 20-14
Configuring ATM-to-ATM PVC Local Switching 20-14
Configuring OAM Cell Emulation for ATM AAL5 SDU Support over MPLS 20-15
Configuring OAM Cell Emulation for ATM AAL5 SDU Support over MPLS on PVCs 20-16
Configuring OAM Cell Emulation for ATM AAL5 SDU Support over MPLS in VC Class
Configuration Mode 20-18
OL-2226-23
Cisco 10000 Series Router Software Configuration Guide
xvii
Contents
Configuring Ethernet over MPLS 20-19
Ethernet over MPLS Restrictions 20-20
Configuring Ethernet over MPLS in VLAN Mode 20-20
Configuring Ethernet over MPLS in Port Mode 20-21
IEEE 802.1Q Tunneling for AToM—QinQ 20-22
Prerequisites for IEEE 802.1Q Tunneling (QinQ) for AToM 20-23
Restrictions for IEEE 802.1Q Tunneling (QinQ) for AToM 20-23
Ethernet VLAN Q-in-Q AToM 20-23
Configuration Examples 20-25
Verifying QinQ AToM 20-25
Remote Ethernet Port Shutdown 20-25
Restrictions for Configuring Remote Ethernet Port Shutdown 20-26
Configuring Remote Ethernet Port Shutdown 20-26
Configuring Ethernet over MPLS with VLAN ID Rewrite 20-27
Configuring Frame Relay over MPLS 20-28
Configuring Frame Relay over MPLS with DLCI-to-DLCI Connections 20-28
Configuring Frame Relay over MPLS with Port-to-Port Connections 20-29
Enabling Other PE Devices to Transport Frame Relay Packets 20-30
Configuring Frame Relay-to-Frame Relay Local Switching 20-31
Configuring Frame Relay for Local Switching 20-32
Configuring Frame Relay Same-Port Switching 20-33
Verifying Layer 2 Local Switching for Frame Relay 20-34
Configuring QoS Features 20-34
Configuring HDLC and PPP over MPLS 20-36
Restrictions for HDLC over MPLS 20-36
Restrictions for PPP over MPLS 20-36
Configuring HDLC over MPLS or PPP over MPLS 20-36
Estimating the Size of Packets Traveling Through the Core Network 20-37
Estimating Packet Size—Example 20-38
Changing the MTU Size on P and PE Routers 20-38
Setting Experimental Bits with AToM 20-38
Configuring QoS Features 20-40
Monitoring and Maintaining L2VPN 20-43
Configuration Example—Frame Relay over MPLS 20-44
Any Transport over MPLS—Tunnel Selection 20-47
Configuration Example—Any Transport over MPLS: Tunnel Selection 20-47
CHAPTER
21 Configuring L2VPN Interworking 21-1
Bridged Interworking 21-1
Cisco 10000 Series Router Software Configuration Guide
xviii
OL-2226-23
Ethernet to VLAN—Bridged Interworking 21-2
Configuring L2VPN Interworking 21-2
Verifying the Configuration 21-3
Configuration Examples of Ethernet to VLAN—Bridged 21-3
Ethernet to VLAN over LS—Bridged: Example 21-4
Ethernet to VLAN over AToM—Bridged: Example 21-4
Routed Interworking 21-4
Restrictions for Routed Interworking 21-5
Ethernet/VLAN to ATM AAL5 Interworking 21-5
Prerequisites of Ethernet/VLAN to ATM AAL5 Interworking 21-6
Restrictions of Ethernet/VLAN to ATM AAL5 Interworking 21-6
ATM AAL5 to Ethernet Local Switching—Bridged Interworking 21-8
ATM AAL5 to VLAN 802.1Q Local Switching—Bridged Interworking 21-9
ATM AAL5 to Ethernet Port AToM—Bridged Interworking 21-9
ATM AAL5 to Ethernet VLAN 802.1Q AToM—Bridged Interworking 21-10
ATM to Ethernet—Routed Interworking 21-11
Configuration Tasks and Examples 21-12
Local Switching 21-12
AToM 21-14
Contents
CHAPTER
Ethernet/VLAN to Frame Relay Interworking 21-17
Prerequisites of Ethernet/VLAN to Frame Relay Interworking 21-17
Restrictions for Ethernet/VLAN to Frame Relay Interworking 21-17
FR DLCI to Ethernet Local Switching—Bridged Interworking 21-19
FR DLCI to VLAN 802.1Q Local Switching—Bridged Interworking 21-20
FR DLCI to Ethernet Port AToM—Bridged Interworking 21-20
FR DLCI to Ethernet VLAN 802.1Q AToM—Bridged Interworking 21-21
Frame Relay to Ethernet—Routed Interworking 21-22
Configuration Tasks and Examples 21-23
Local Switching 21-23
AToM 21-24
ATM to Frame Relay—Routed Interworking 21-27
Configuration Tasks and Examples 21-28
Local Switching 21-28
AToM 21-29
Verifying L2VPN Interworking 21-30
22 Configuring Multilink Point-to-Point Protocol Connections 22-1
Multilink Point-to-Point Protocol 22-1
Feature History for Multilink PPP 22-2
OL-2226-23
Cisco 10000 Series Router Software Configuration Guide
xix
Contents
MLP Bundles 22-3
Restrictions for MLP Bundles 22-3
MLP Bundles and PPP Links 22-3
System Limits for MLP Bundles 22-4
Types of MLP Bundle Interfaces 22-4
MLP Groups 22-5
MLP Group Interfaces and Virtual Template Interfaces 22-6
How MLP Determines the Link a Bundle Joins 22-6
IP Addresses on MLP-Enabled Links 22-7
Valid Ranges for MLP Interfaces 22-8
MLP Overhead 22-9
Configuration Commands for MLP 22-9
interface multilink Command 22-9
ppp multilink Command 22-10
ppp multilink fragment-delay Command 22-10
ppp multilink interleave Command 22-11
ppp multilink fragment disable Command 22-12
ppp multilink group Command 22-12
MLP over Serial Interfaces 22-13
Performance and Scalability for MLP over Serial Interfaces 22-14
Restrictions and Limitations for MLP over Serial Interfaces 22-14
Single-VC MLP over ATM Virtual Circuits 22-15
Performance and Scalability for Single-VC MLP over ATM 22-15
Restrictions and Limitations for Single-VC MLP over ATM 22-15
Multi-VC MLP over ATM Virtual Circuits 22-16
Performance and Scalability for Multi-VC MLP over ATM VCs 22-17
Restrictions and Limitations for Multi-VC MLP over ATM VCs 22-17
MLP on LNS 22-18
About MLP on LNS 22-19
PPP multilink links max Command 22-21
Performance and Scalability of MLP on LNS 22-21
PXF Memory and Performance Impact for MLP on LNS 22-21
Scenario 1 22-22
Scenario 2 22-22
Restrictions and Limitations for MLP on LNS 22-23
Configuring MLP on LNS 22-24
MLPoE LAC Switching 22-24
Restrictions for MLPoE LAC Switching 22-24
Cisco 10000 Series Router Software Configuration Guide
xx
OL-2226-23
MLPoE at PTA 22-25
ATM Overhead Accounting 22-26
Prerequisites of MLPoE at PTA 22-26
Restrictions of MLPoE at PTA 22-26
Memory and Performance Impact of MLPoE at PTA 22-27
MLP-Based Link Fragmentation and Interleaving 22-27
Configuring MLP Bundles and Member Links 22-27
Creating an MLP Bundle Interface 22-28
Configuration Example for Creating an MLP Bundle Interface 22-29
Enabling MLP on a Virtual Template 22-30
Configuration Example for Enabling MLP on a Virtual Template 22-31
Adding a Serial Member Link to an MLP Bundle 22-31
Adding an ATM Member Link to an MLP Bundle 22-32
Configuration Example for Adding ATM Links to an MLP Bundle 22-34
Moving a Member Link to a Different MLP Bundle 22-35
Removing a Member Link from an MLP Bundle 22-36
Changing the Default Endpoint Discriminator 22-37
Configuration Example for Changing the Endpoint Discriminator 22-37
Contents
CHAPTER
Configuration Examples for Configuring MLP 22-38
Configuration Example for Configuring MLP over Serial Interfaces 22-38
Configuration Example for Configuring Single-VC MLP over ATM 22-38
Configuration Example for Configuring Multi-VC MLP over ATM 22-39
Configuration Example for MLP on LNS 22-39
Configuration Example for MLPoE LAC Switching 22-41
Configuration Examples of MLPoE at PTA 22-41
Configuring MLPoE over IEEE 802.1Q VLANs 22-42
Configuring MLPoE through RADIUS 22-42
Verifying and Monitoring MLP Connections 22-43
Bundle Counters and Link Counters 22-44
Verification Examples for MLP Connections 22-44
Verification Example for the show interfaces multilink Command 22-44
Verification Example for the show ppp multilink Command 22-45
Verification Example for the show interfaces multilink stat Command 22-46
Related Documentation 22-46
23 Configuring Gigabit EtherChannel Features 23-1
Feature History for Gigabit EtherChannel 23-2
Prerequisites for Gigabit EtherChannel Configuration 23-3
Restrictions for Gigabit EtherChannel Configuration 23-3
OL-2226-23
Cisco 10000 Series Router Software Configuration Guide
xxi
Contents
Configuring QoS Service Policies on GEC Interfaces 23-3
Restrictions for QoS Service Policies on GEC Bundles 23-5
Configuration Examples 23-5
Configuration Example for Using the VLAN Group Feature to Apply QoS on Member Links 23-5
Configuration Example for Applying QoS on GEC Bundle Subinterfaces 23-6
Configuring Policy Based Routing Support on a GEC Bundle 23-7
Restriction for Configuring PBR Support on a GEC Bundle 23-7
Configuring IEEE 802.1Q and QinQ Support on GEC Bundle 23-7
Prerequisites for Configuring IEEE 802.1Q and QinQ Support 23-7
Restrictions for Configuring IEEE 802.1Q and QinQ Support on GEC Bundle 23-7
Configuration Tasks for IEEE 802.1Q and QinQ on Subinterfaces 23-8
Configuration Examples 23-8
Configuring MVPN Support on GEC Bundle 23-9
Configuration Tasks and Examples 23-9
Configuring PPPoX Support on a GEC Bundle 23-9
Restrictions for Configuring PPPoX Support for GEC Bundle 23-9
Configuration Tasks 23-10
Configuration Examples 23-10
CHAPTER
Configuring High Availability Support on GEC Bundle 23-11
Configuring 8 Member Links per GEC Bundle 23-11
Configuration Tasks 23-11
Configuring VLAN-Based Load Balancing 23-12
Restrictions for VLAN-Based Load Balancing 23-12
Configuration Tasks 23-13
Configuration Example 23-14
Configuration Example of VLAN-Based Load Balancing 23-14
Configuration Example for Applying VLAN QoS on GEC Bundle Subinterfaces 23-15
Configuration Example for Using the VLAN Group Feature to Apply QoS 23-16
24 Configuring IP Version 6 24-1
Feature History for IPv6 24-1
Supported Features 24-1
Limitations for IPv6 24-3
IPv6 Extended ACLs 24-4
Prerequisites 24-4
Restrictions 24-4
Configuring IPv6 Traffic Filtering 24-5
Creating and Configuring the IPv6 ACL 24-5
Cisco 10000 Series Router Software Configuration Guide
xxii
OL-2226-23
Applying the IPv6 ACL to an Interface 24-6
Verifying IPv6 ACLs 24-7
Create and Apply IPv6 ACL: Examples 24-8
Contents
CHAPTER
CHAPTER
25 Configuring Template ACLs 25-1
Feature History for Template ACLs 25-2
Configuration Tasks for Template ACLs 25-3
Configuring the Maximum Size of Template ACLs (Optional) 25-3
Configuring ACLs Using RADIUS Attribute 242 25-3
Monitoring and Maintaining the Template ACL Configuration 25-5
Configuration Examples for Template ACLs 25-5
access-list template Command 25-5
access-list template Command History 25-6
access-list template Command Modes 25-6
Usage Guidelines for the access-list template Command 25-6
Examples 25-6
show access-list template Command 25-6
show access-list template Command Modes 25-7
show access-list template Command History 25-7
Examples 25-7
26 Protecting the Router from DoS Attacks 26-1
CHAPTER
OL-2226-23
IP Options Selective Drop 26-1
Feature History for IP Options Selective Drop 26-2
Restrictions for IP Options Selective Drop 26-2
How to Configure IP Options Selective Drop 26-2
Dropping Packets with IP Options 26-2
Verifying IP Options Packets 26-3
Configuration Examples for IP Options Selective Drop 26-3
Dropping IP Options Packets: Example 26-3
Verifying IP Options Handling: Example 26-4
Related Documentation 26-4
27 IP Tunneling 27-1
GRE Tunnel IP Source and Destination VRF Membership 27-1
Tunnel VRF 27-1
VRF-Aware VPDN Tunnels 27-2
Feature History for GRE Tunnel IP Source and Destination VRF Membership 27-2
Cisco 10000 Series Router Software Configuration Guide
xxiii
Contents
Restrictions for GRE Tunnel IP Source and Destination VRF Membership 27-3
How to Configure GRE Tunnel IP Source and Destination VRF Membership 27-3
Configuring Tunnel VRF 27-3
Configuring VRF-Aware VPDN Tunnels 27-4
Configuration Examples 27-4
Configuration Example for Tunnel VRF 27-4
Configuration Examples for VRF-Aware VPDN Tunnels 27-5
APPENDIX
G
LOSSARY
I
NDEX
A RADIUS Attributes A-1
RADIUS IETF Attributes A-1
Vendor-Proprietary RADIUS Attributes A-4
Vendor-Specific RADIUS IETF Attributes A-8
Cisco 10000 Series Router Software Configuration Guide
xxiv
OL-2226-23
About This Guide
This guide provides configuration information for features that are platform-specific to the
Cisco
10000 series router. Documentation is also provided for cross-platform features that function
differently on the Cisco
Cross-platform features that function on the Cisco 10000 series router as they do on other supported
platforms, and platform-independent features that are supported on the Cisco
described in the general Cisco IOS documentation.
This introduction provides information about the following topics:
• Guide Revision History, page xxv
• Audience, page xxx
• Document Organization, page xxx
10000 series router than on other supported platforms.
10000 series router are
• Document Conventions, page xxxii
• Related Documentation, page xxxiii
• Obtaining Documentation, Obtaining Support, and Security Guidelines, page xxxiv
Guide Revision History
Cisco IOS Release Part Number Publication Date
Release 12.2(33)XNE3 OL-2226-23 June, 2010
Added the features listed in the “New Features in Cisco IOS Release 12.2(33)XNE3” section on
page 1-16
Cisco IOS Release Part Number Publication Date
Release 12.2(33)XNE OL-2226-22 November, 2009
Added the features listed in the “New Features in Cisco IOS Release 12.2(33)XNE” section on page 1-16
OL-2226-23
Cisco 10000 Series Router Software Configuration Guide
xxv
Guide Revision History
Cisco IOS Release Part Number Publication Date
Release 12.2(33)SB3 OL-2226-21 December, 2008
Added the features listed in the “New Features in Cisco IOS Release 12.2(33)SB3” section on page 1-18
Cisco IOS Release Part Number Publication Date
Release 12.2(33)SB2 OL-2226-20 September, 2008
Added the features listed in the “New Features in Cisco IOS Release 12.2(33)SB2” section on page 1-18
Cisco IOS Release Part Number Publication Date
Release 12.2(33)SB OL-2226-19 September, 2008
About This Guide
Added the scaling limit of L4R sessions for PRE2, PRE3, and PRE4 in the Chapter 2, “Scalability and
Performance”
Cisco IOS Release Part Number Publication Date
Release 12.2(33)SB OL-2226-18 March, 2008
Removed Using PXF Commands and Configuring Layer 2 Local Switching chapters.
Added the features listed in the “New Features in Cisco IOS Release 12.2(33)SB” section on page 1-18.
Cisco IOS Release Part Number Publication Date
Release 12.2(31)SB5 OL-2226-17 April, 2007
Added the GRE Tunnel IP Source and Destination VRF Membership feature in Chapter 27, “IP
Tunneling.”
Added the “New Features in Cisco IOS Release 12.2(31)SB5” section on page 1-19.
Cisco IOS Release Part Number Publication Date
Release 12.2(31)SB3 OL-2226-16 February, 2007
Description
Added the features listed in the “New Features in Cisco IOS Release 12.2(31)SB3” section on page 1-19.
Cisco 10000 Series Router Software Configuration Guide
xxvi
OL-2226-23
About This Guide
Cisco IOS Release Part Number Publication Date
Release 12.2(31)SB2 OL-2226-15 November, 2006
Description
Added the features listed in the “New Features in Cisco IOS Release 12.2(31)SB2” section on page 1-20.
Cisco IOS Release Part Number Publication Date
Release 12.2(28)SB OL-2226-14 July, 2006
Description
Added the features listed in the New Features in Cisco IOS Release 12.2(28)SB, page 1-21.
Cisco IOS Release Part Number Publication Date
Release 12.3(7)XI7 OL-2226-13 September, 2005
Guide Revision History
Description
Changed the Related Documentation link to the new Cisco 10000 Series Router Documentation
Roadmap
Added the features listed in the “New Features in Cisco IOS Release 12.3(7)XI7” section on page 1-25.
Removed the “pointer to a pointer” for the PPPoE Circuit-Tag Processing feature by removing a
summary and a pointer from Chapter 16, Configuring RADIUS Features, and retaining only the pointer
to the feature module in the
New Features in Cisco IOS Release 12.3(7)XI3, page 1-26.
Removed the restriction for non-support of SSG in Restrictions for IP Unnumbered on VLANs,
page 7-3.
Added support for the 1-Port Channelized OC-12/STM-4 line card in Restrictions for MR-APS,
page 14-21.
Removed Chapter 16, “IEEE 802.1Q-in-Q VLAN Tag Termination,” and added a pointer to the
PPPoE—QinQ Support
feature guide, located at the following URL. This document includes support for
IPoQ-in-Q.
http://www.cisco.com/en/US/products/sw/iosswrel/ps5207/products_feature_guide09186a00801f0f4a.
html
Relocated the remaining QoS features to the Cisco 10000 Series Router Quality of Service Configuration
Guide, located at the following URL:
http://www.cisco.com/en/US/products/hw/routers/ps133/products_configuration_guide_book09186a00
805b9497.html
The chapter references for the following relocated features see the Cisco 10000 Series Router Quality of
Service Configuration Guide:
• Class-based Weighted Fair Queuing—See “Sharing Bandwidth Fairly During Congestion”
• Define Interface Policy-Map AV Pairs AAA—See “Configuring Dynamic Subscriber Services”
• Dynamic Bandwidth Selection—See “Configuring Dynamic Subscriber Services”
• Hierarchical Shaping—See “Shaping Traffic”
• IP Quality of Service for Subscribers—See “Regulating Subscriber Traffic”
OL-2226-23
Cisco 10000 Series Router Software Configuration Guide
xxvii
Guide Revision History
• MPLS QoS—See “Configuring Quality of Service for MPLS Traffic”
• MPLS Traffic Engineering—Diffserv Aware—See “Configuring Quality of Service for MPLS
Traffic”
• Per VRF AAA (see Chapter 18, “Configuring Quality of Service for MPLS Traffic”)
Added feature histories and mini tables of contents for each feature in this guide.
Added the Static MAC Address for PPPoE feature in Chapter 6, “Configuring PPPoE over Ethernet and
IEEE 802.1Q VLAN”
Cisco IOS Release Part Number Publication Date
Release 12.3(7)XI6 OL-2226-10 June, 2005
Description
Corrected MR-APS configuration in Example 14-1.
Added output policing behavior on an LNS VAI (CSCee07016) in Restrictions for the LNS, page 5-28.
Corrected examples to show VLANs instead of ATM PVCs in Chapter 6, “Configuring PPPoE over
Ethernet and IEEE 802.1Q VLAN”.
Added a chapter to describe frequently-used show PXF commands in Chapter 23, “Using PXF
Commands”.
About This Guide
Revised a note about mapping sessions to VRFs by using the RADIUS server in PPP over Ethernet to
MPLS VPN, page 3-5.
Added a description of PRE support on Cisco 10000 series routers in Hardware Requirements, page 1-1.
Cisco IOS Release Part Number Publication Date
Release 12.3(7)XI3 OL-2226-09 March, 2005
Description
Added the features listed in the “New Features in Cisco IOS Release 12.3(7)XI3” section on page 1-26.
Corrected scaling limits for active VCs on ATM line cards (CSCeg37235) in:
• VC Scaling, page 2-8
• Configuring atm pxf queuing, page 2-16
• Restrictions for Hierarchical Shaping (moved to the Cisco 10000 Series Router Quality of Service
Configuration Guide)
• ATM VC Scaling and VC Assignment, page 8-4
• Restrictions for VBR-nrt Oversubscription, page 8-15
Changed the configurable ATM oversubscription factor range from 1-50 to 1-500 in Configuring
VBR-nrt Oversubscription, page 8-17
Corrected the restrictions for MPLS QoS to indicate that the set mpls experimental imposition topmost
command is not supported.
Added a restriction for enabling IP multicast fast switching in Restrictions for IP Multicast, page 15-34
Changed the title of this guide to include MPLS configuration
Cisco 10000 Series Router Software Configuration Guide
xxviii
OL-2226-23
About This Guide
Guide Revision History
Relocated QoS features to the Cisco 10000 Series Router Quality of Service Configuration Guide,
located at the following URL:
http://www.cisco.com/en/US/products/hw/routers/ps133/products_configuration_guide_book09186a00
805b9497.html
The chapter references in the following relocated features see the Cisco 10000 Series Router Quality of
Service Configuration:
• Modular QoS CLI Overview—See “Quality of Service Overview.”
• MQC Policy Map Support on Configured VC Range ATM—See “Attaching Service Policies.”
• Strict Priority Queuing—See “Prioritizing Services.”
• 3-Color Policer—See “Policing Traffic.”
• Percent-Based Policing—See “Policing Traffic.”
• Queue Scaling—See “Managing Packet Queue Congestion.”
• IEEE 802.1p Class of Service—See “Marking Traffic.”
• Per DSCP Weighted Random Early Detection—See “Managing Packet Queue Congestion.”
• Per Precedence Weighted Random Early Detection Statistics—See “Managing Packet Queue
Congestion.”
• Weighted Random Early Detection with Queue Limit—See “Managing Packet Queue Congestion.”
• VC Weighting—See “Oversubscribing Physical and Virtual Links.”
• Dynamic ATM VP and VC Configuration Modification—See “Oversubscribing Physical and Virtual
Links.”
• Interface Oversubscription—See “Oversubscribing Physical and Virtual Links.”
• 3-Level Hierarchical QoS Policies—See “Defining QoS for Multiple Policy Levels.”
Cisco IOS Release Part Number Publication Date
Release 12.3(7)XI2 OL-2226-08 November, 2004
Description
Added the features listed in the “New Features in Cisco IOS Release 12.3(7)XI2” section on page 1-26.
Added a scaling limitation for create on demand PVCs and PPP sessions in Limitations and Restrictions,
page 2-3
Changed the SAR page limit (CSCee59870) in ATM VC Scaling and VC Assignment, page 8-4
Added information about the behavior of high water mark and low water mark values used with VC
weighting in High Water Mark and Low Water Mark Values (moved to the Cisco 10000 Series Router
Quality of Service Configuration Guide)
Added a table indicating scaling limits for active VCs on ATM line cards in:
• Configuring atm pxf queuing, page 2-16
• Restrictions for Hierarchical Shaping (moved to the Cisco 10000 Series Router Quality of Service
Configuration Guide)
• ATM VC Scaling and VC Assignment, page 8-4
• Restrictions for VBR-nrt Oversubscription, page 8-15
OL-2226-23
Cisco 10000 Series Router Software Configuration Guide
xxix
Audience
Cisco IOS Release Part Number Publication Date
Release 12.3(7)XI1 OL-2226-07 August, 2004
Description
Added the new features listed in the “New Features in Cisco IOS Release 12.3(7)XI1” section on
page 1-26.
Audience
This guide is designed for system and network managers responsible for configuring broadband
aggregation, leased-line, and MPLS services and on the Cisco
be experienced using Cisco IOS software and be familiar with the operation of the
Cisco
10000 series router.
10000 series router. The manager should
About This Guide
Document Organization
This guide contains the following chapters:
Chapter Title Description
Chapter 1 Broadband Aggregation Overview Lists new features and enhancements in each release; describes
hardware requirements. Provides examples of broadband and
leased-line architecture models.
Chapter 2 Scalability and Performance Describes limitations and restrictions, and how to configure the
Cisco
10000 series router for high scalability.
Chapter 3 Configuring Remote Access to MPLS
VPN
Chapter 4 Configuring Multiprotocol Label
Switching
Chapter 5 Configuring Layer 2 Tunnel Protocol
Access Concentrator and Network Server
Chapter 6 Configuring PPPoE over Ethernet and
IEEE 802.1Q VLANs
Chapter 7 Configuring IP Unnumbered over VLAN Describes the IP Unnumbered over VLAN feature that helps
Describes the Remote Access (RA) to MPLS VPN feature that
allows the service provider to offer a scalable end-to-end VPN
service to remote users.
Describes MPLS-related features, such as BGP Multipath load
sharing, Session Limit per VRF, and Half-duplex VRF.
Describes how to configure the Cisco 10000 series router as a
Layer
2 Tunnel Protocol Access Concentrator (LAC) or as an
L2TP Network Server (LNS). The managed LNS feature of the
Cisco
10000 series router enables the router to assign a
subscriber session to a VRF instance and route the session
within the VRF to the destination network.
Describes the PPPoE over Ethernet feature that enables direct
connection to an Ethernet interface. Also describes the
IEEE
802.1Q VLANs feature that enables the
Cisco
10000 series router to support PPPoE over IEEE 802.1Q
encapsulated VLANs using Gigabit Ethernet.
service providers to conserve IP address space for service
provider configurations that include Ethernet VLAN
subinterfaces.
Cisco 10000 Series Router Software Configuration Guide
xxx
OL-2226-23
Loading...