5.4. PPP Command Reference

5.4.1. Command Hierarchies

  1. PPPoE Policy Configuration Commands
  2. PPPoE Service Commands
  3. PPPoE Local User Database Commands
  4. MLPPP on LNS Commands
  5. Show Commands

5.4.1.1. PPPoE Policy Configuration Commands

config
— subscriber-mgmt
ppp-policy ppp-policy-name [create]
— no ppp-policy ppp-policy-name
default-pap-password password [hash | hash2| custom]
— no default-pap-password
default-user-name ppp-username
— no default-user-name
description description-string
— no description
[no] disable-cookies
[no] force-ppp-mtu-gt-1492
[no] ipcp-subnet-negotiation
keepalive seconds [hold-up-multiplier multiplier]
— no keepalive
[no] lcp-ignore-magic-numbers
max-sessions-per-mac sessions [allow-same-circuit-id-for-dhcp]
— no max-sessions-per-mac
pado-ac-name name
— no pado-ac-name
pado-delay deci-seconds
— no pado-delay
ppp-authentication {pap | chap | pref-chap | pref-pap}
— no ppp-authentication
ppp-chap-challenge-length min minimum-length max maximum-length
— no ppp-chap-challenge-length
[no] ppp-initial-delay
ppp-mtu mtu-bytes
— no ppp-mtu
ppp-options
custom-option protocol option-number address ip-address
custom-option protocol option-number hex hex-string
custom-option protocol option-number string ascii-string
— no custom-option protocol option-number
re-establish-session padr
— no re-establish-session
[no] reject-disabled-ncp
[no] reply-on-padt
[no] reject-disabled-ncp
session-timeout timeout
— no session-timeout
unique-sid-per-sap [per-msap]
— no unique-sid-per-sap

5.4.1.2. PPPoE Service Commands

Note:

The commands listed in this section apply only to the 7750 SR.

config
— service
— ies service-id [customer customer-id] [vpn vpn-id] [create]
— vprn service-id [customer customer-id] [create]
— no vprn service-id
— no ies service-id
[no] subscriber-interface ip-int-name
[no] group-interface ip-int-name
dhcp
client-applications {[dhcp] [ppp]}
— no client-applications
[no] ppp
description description-string
— no description
policy ppp-policy-name
— no policy
session-limit session-limit
— no session-limit
[no] shutdown
user-db local-user-db-name
— no user-db
[no] pppoe
anti-spoof pppoe-anti-spoofing-type
— no anti-spoof
description description-string
— no description
dhcp-client
client-id {mac-pppoe-session-id}
— no client-id
policy ppp-policy-name
— no policy
python-policy name
— no python-policy
sap-session-limit sap-session-limit
— no sap-session-limit
session-limit session-limit
— no session-limit
[no] shutdown
user-db local-user-db-name
— no user-db

5.4.1.3. PPPoE Local User Database Commands

Note:

PPPoE Local User Database commands are described in the Triple Play DHCP Command Reference section.

5.4.1.4. MLPPP on LNS Commands

Refer to the 7450 ESS, 7750 SR, and VSR Multiservice Integrated Service Adapter Guide for MLPPP configuration and command information. Refer to the 7450 ESS, 7750 SR, and VSR Triple Play Service Delivery Architecture Guide for Local User Database configuration and command information.

config
— subscriber-mgmt
— ppp-policy ppp-policy-name [create]
— no ppp-policy ppp-policy-name
— mlppp
[no] accept-mrru
endpoint ip ip-address
endpoint mac ieee-address
endpoint system-ip
endpoint system-mac
— no endpoint
[no] short-sequence-numbers
config
— router
— l2tp
— group tunnel-group-name [create]
— no group tunnel-group-name
load-balance-method {session | tunnel}
— no load-balance-method
— mlppp
endpoint ip ip-address
endpoint mac ieee-address
endpoint system-ip
endpoint system-mac
— no endpoint
[no] interleave
max-fragment-delay milliseconds
— no max-fragment-delay
max-link max-links
— no max-link
reassembly-timeout {{100 | 1000} milliseconds}
— no reassembly-timeout
— tunnel tunnel-name [create]
— no tunnel tunnel-name
load-balance-method {session | tunnel}
— no load-balance-method
— mlppp
admin-state {up | down}
— no admin-state
endpoint ip ip-address
endpoint mac ieee-address
endpoint system-ip
endpoint system-mac
— no endpoint
interleave {always | never}
— no interleave
max-fragment-delay milliseconds
— no max-fragment-delay
max-link max-links
— no max-link
reassembly-timeout {{100 | 1000} milliseconds}
— no reassembly-timeout
config
— service
— vprn
— l2tp
— group
load-balance-method {session | tunnel}
— no load-balance-method
— mlppp
admin-state {up | down}
— no admin-state
endpoint ip ip-address
endpoint mac ieee-address
endpoint system-ip
endpoint system-mac
— no endpoint
interleave {always | never}
— no interleave
max-fragment-delay milliseconds
— no max-fragment-delay
max-link max-links
— no max-link
reassembly-timeout {{100 | 1000} milliseconds}
— no reassembly-timeout
— tunnel
load-balance-method {session | tunnel}
— no load-balance-method
— mlppp
admin-state {up | down}
— no admin-state
endpoint ip ip-address
endpoint mac ieee-address
endpoint system-ip
endpoint system-mac
— no endpoint
interleave {always | never}
— no interleave
load-balance-method {session | tunnel}
— no load-balance-method
max-fragment-delay milliseconds
— no max-fragment-delay
max-link max-links
— no max-link
reassembly-timeout {{100 | 1000} milliseconds}
— no reassembly-timeout

5.4.1.5. Show Commands

show
— router
— l2tp
peer ip-address [udp-port port]
peer ip-address statistics [udp-port port]
peer [draining] [blacklisted | selectable | unreachable]
— service
— id service-id
ipoe
session [sap sap-id] [mac ieee-address] [circuit-id circuit-id] [remote-id remote-id] [interface ip-int-name | ip-address] [inter-dest-id intermediate-destination-id] [no-inter-dest-id] [ip-address ip-prefix[/prefix-length]] [port port-id] [subscriber sub-ident-string] [sap-session-id sap-session-index] [detail] [wholesaler service-id] [router-advertisement-policy policy-name]
summary
ppp
session [user-name user-name] [sub-ppp-type sub-ppp-type] [interface {ip-int-name | ip-address}] [inter-dest-id intermediate-destination-id] [no-inter-dest-id] [ip-address ip-prefix[/prefix-length]] [port port-id] [sap sap-id] [termination-type ppp-session-type] [mlppp] [steering-profile steering-profile] [circuit-id circuit-id] [remote-id remote-id]
session [user-name user-name] [circuit-id circuit-id] [remote-id remote-id] detail
session [user-name user-name] [circuit-id circuit-id] [remote-id remote-id] statistics
statistics
statistics interface {ip-int-name | ip-address}
statistics sap sap-id
summary
pppoe
session [interface ip-int-name | ip-address | sap sap-id] [type pppoe-session-type] [session-id session-id] [mac ieee-address] [ip-address ip-address[/mask]] [port port-id] [no-inter-dest-id | inter-dest-id intermediate-destination-id] [steering-profile steering-profile] [router-advertisement-policy policy-name] [detail | statistics]
session l2tp-connection-id connection-id [detail | statistics]
statistics [{sap sap-id | interface ip-int-name | ip-address}
summary
— subscriber-mgmt
ppp-policy [ppp-policy-name [association]]

5.4.2. Command Descriptions

5.4.2.1. Generic Commands

description

Syntax 
description description-string
no description
Context 
config>subscr-mgmt>pppoe-policy
config>service>ies>sub-if>grp-if>pppoe
config>service>vprn>sub-if>grp-if>pppoe
Description 

This command creates a text description stored in the configuration file for a configuration context.

The description command associates a text string with a configuration context to help identify the content in the configuration file.

The no form of this command removes the string from the configuration.

Parameters 
description-string—
Specifies the description character string. Allowed values are any string up to 80 characters long composed of printable, 7-bit ASCII characters. If the string contains special characters (#, $, spaces, and so on), the entire string must be enclosed within double quotes.

shutdown

Syntax 
[no] shutdown
Context 
config>service>ies>sub-if>grp-if>pppoe
config>service>vprn>sub-if>grp-if>pppoe
Description 

This command administratively disables the entity. When disabled, an entity does not change, reset, or remove any configuration settings or statistics. Many entities must be explicitly enabled using the no shutdown command. The operational state of the entity is disabled as well as the operational state of any entities contained within. Many objects must be shut down before they may be deleted.

The no form of this command places the entity into an administratively enabled state.

5.4.2.1.1. Subscriber Management Commands

subscriber-mgmt

Syntax 
subscriber-mgmt
Context 
config>subscr-mgmt
Description 

This command enables the context to configure subscriber management parameters.

ppp-policy

Syntax 
ppp-policy ppp-policy-name [create]
no ppp-policy ppp-policy-name
Context 
config>subscr-mgmt
Description 

This command configures a PPP policy. These policies are referenced from interfaces configured for PPP. Multiple PPP policies may be configured.

This default policy cannot be modified nor deleted.

Default 

default

Parameters 
ppp-policy-name—
Specifies the PPP policy name up to 32 characters.
create—
Keyword used to create the entity. The create keyword requirement can be enabled/disabled in the environment>create context.

default-pap-password

Syntax 
default-pap-password password [hash | hash2 | custom]
no default-pap-password
Context 
config>subscr-mgmt>ppp-policy
Description 

This command configures the default PAP password for RADIUS authentication when the Password-Length=0 in the PAP Authenticate-Request.

RADIUS authentication cannot be initiated when the Password-Length=0 in the PAP Authenticate-Request and no default-pap-password is configured. The PPP session terminates in this case.

Parameters 
password—
Specifies a default PAP password up to 64 characters.
hash—
Specifies the key is entered in an encrypted form. If the hash or hash2 parameter is not used, the key is assumed to be in an unencrypted, clear text form. For security, all keys are stored in encrypted form in the configuration file with the hash or hash2 parameter specified.
hash2—
Specifies the key is entered in a more complex encrypted form that involves more variables than the key value alone, meaning that the hash2 encrypted variable cannot be copied and pasted. If the hash or hash2 parameter is not used, the key is assumed to be in an unencrypted, clear text form. For security, all keys are stored in encrypted form in the configuration file with the hash or hash2 parameter specified.
custom—
Specifies the custom encryption to management interface.

default-user-name

Syntax 
default-user-name ppp-username
no default-user-name
Context 
config>subscr-mgmt>ppp-policy
Description 

This command configures the default username for authentication when not provided in PAP/CHAP authentication (no Name field in CHAP Response message or Peer-Id-Length=0 in PAP Authenticate-Request).

The PPP session terminates when no username is provided in PAP/CHAP authentication and no default-user-name is configured.

Parameters 
ppp-username —
Specifies a default username up to 253 characters.

disable-cookies

Syntax 
[no] disable-cookies
Context 
config>subscr-mgmt>ppp-policy
Description 

This command disables the use of cookies.

The no form of this command enables cookies.

force-ppp-mtu-gt-1492

Syntax 
[no] force-ppp-mtu-gt-1492
Context 
config>subscr-mgmt>ppp-policy
Description 

This command enables PPPoE Maximum-Receive-Unit (MRU) negotiations greater than 1492 bytes without the need to receive a “PPP-Max-Payload” tag in PADI/PADR from the client as defined in RFC 4638, Accommodating a Maximum Transit Unit/Maximum Receive Unit (MTU/MRU) Greater Than 1492 in the Point-to-Point Protocol over Ethernet (PPPoE).

The MRU send in the initial LCP Config Request is determined by the port mtu and ppp-policy ppp-mtu parameters.

keepalive

Syntax 
keepalive seconds [hold-up-multiplier multiplier]
no keepalive
Context 
config>subscr-mgmt>ppp-policy
Description 

This command defines the keepalive interval and the number of keepalives that can be missed before the session is declared down for this PPP policy.

The no form of this command reverts to the default value.

Default 

keepalive 30 hold-up-multiplier 3

Parameters 
seconds—
Specifies the keepalive interval in seconds.
Values—
10 to 300

 

hold-up-multiplier multiplier
Specifies the number of keepalives that can be missed.
Values—
1 to 5

 

ipcp-subnet-negotiation

Syntax 
[no] ipcp-subnet-negotiation
Context 
config>subscr-mgmt>ppp-policy
Description 

This command enables subnet negotiation using PPP IPCP Subnet-Mask option (0x90) if requested by the client. The subnet can be obtained from RADIUS (Framed-IP-Netmask attribute) or local user database. The subnet is installed as a managed route of the PPP session. This requires the anti-spoof type on the SAP to be configured to nh-mac.

By default, an IPCP Config Request with IPCP Subnet-Mask option (0x90) is rejected.

lcp-ignore-magic-numbers

Syntax 
[no] lcp-ignore-magic-numbers
Context 
config>subscr-mgmt>ppp-policy
Description 

This command enables the PPP session to stay established when an LCP peer magic number mismatch is detected.

By default, the PPP session is terminated when an LCP peer magic number mismatch is detected.

max-sessions-per-mac

Syntax 
max-sessions-per-mac sessions [allow-same-circuit-id-for-dhcp]
no max-sessions-per-mac
Context 
config>subscr-mgmt>ppp-policy
Description 

This command sets the maximum PPP sessions that can be opened for a given MAC address.

To enable IPv4 address allocation using the internal DCHCPv4 client for multiple PPPoE sessions on a single SAP and having the same MAC address and circuit-ID, the optional CLI parameter allow-same-circuit-id-for-dhcp should be added. The SR OS local DHCP server detects the additional vendor-specific options inserted by the internal DCHCPv4 client and use an extended unique key for lease allocation.

The no form of this command reverts to the default value.

Parameters 
sessions—
Specifies the maximum PPP sessions that can be opened for the given MAC address.
Values—
1 to 8191

 

allow-same-circuit-id-for-dhcp
Enables support for IPv4 address allocation using the internal DCHCPv4 client for multiple PPPoE sessions on a single SAP that have the same MAC address and circuit ID.

pado-ac-name

Syntax 
pado-ac-name name
no pado-ac-name
Context 
config>subscr-mgmt>ppp-policy
Description 

This command configures the Access Concentrator name that is used in the PPPoE PADO message.

By default, the system name or if not configured, the chassis Serial Number is used.

Parameters 
name —
Specifies the string up to 128 characters to be used as AC name in the PPPoE PADO message.

pado-delay

Syntax 
pado-delay deci-seconds
no pado-delay
Context 
config>subscr-mgmt>ppp-policy
Description 

This command configures the delay timeout before sending a PPP Active Discovery Offer (PADO) packet.

Parameters 
deci-seconds—
Specifies the delay timeout before sending a PADO.
Values—
1 to 30

 

ppp-authentication

Syntax 
ppp-authentication {pap | chap | pref-chap | pref-pap}
no ppp-authentication
Context 
config>subscr-mgmt>ppp-policy
Description 

This command configures the PPP protocol used to authenticate the PPP session.

Default 

ppp-authentication pref-chap

Parameters 
pap—
Specifies to always use PAP to authenticate the sessions.
chap—
Specifies to always use CHAP to authenticate the sessions.
pref-chap—
Specifies to attempt to use CHAP and if it fails, use PAP.
pref-pap—
Specifies to attempt to use PAP and if it fails, use CHAP.

ppp-chap-challenge-length

Syntax 
ppp-chap-challenge-length min minimum-length max maximum-length
no ppp-chap-challenge-length
Context 
config>subscr-mgmt>ppp-policy
Description 

This command configures the minimum and maximum length of a PPP Chap Challenge.

When the Chap Challenge is exactly 16 bytes, it is send in the [60] CHAP-Challenge RADIUS attribute and copied in the RADIUS Authenticator field from the RADIUS Access Request.

Default 

ppp-chap-challenge-length min 32 max 64

Parameters 
min minimum-length
Specifies the minimum PPP CHAP challenge length.
Values—
8 to 64

 

max maximum-length
Specifies the maximum PPP CHAP challenge length.
Values—
8 to 64

 

ppp-initial-delay

Syntax 
[no] ppp-initial-delay
Context 
config>subscr-mgmt>ppp-policy
Description 

This command delays the sending of an LCP-configure request after the discovery phase by 40 – 60 milliseconds.

ppp-mtu

Syntax 
ppp-mtu mtu-bytes
no ppp-mtu
Context 
config>subscr-mgmt>ppp-policy
Description 

This command configures the maximum PPP MTU size.

Parameters 
mtu-bytes—
Specifies the maximum PPP MTU size.
Values—
512 to 9212

 

ppp-options

Syntax 
ppp-options
Context 
config>subscr-mgmt>ppp-policy
Description 

This command enables the context to configure PPP options.

custom-option

Syntax 
custom-option protocol option-number address ip-address
custom-option protocol option-number hex hex-string
custom-option protocol option-number string ascii-string
no custom-option protocol option-number
Context 
config>subscr-mgmt>ppp-policy>options
Description 

This command provides the ability to configure custom PPP options.

Note:

Standard options such as the DNS name is returned from DHCP or RADIUS and be converted to PPP automatically. Compression is not supported.

The no form of this command removes the custom options from the configuration.

Parameters 
protocol—
Specifies a protocol for the custom option.
Values—
lcp, ipcp, ipv6cp

 

option-number—
Assigns an identifying number for the custom option.
Values—
0 to 255

 

ip-address—
Specifies the IP address in the a.b.c.d format.
ascii-string—
Specifies an ASCII format string for the custom option up to 127 characters.
hex-string—
Specifies a hex value for the custom option.
Values—
[0x0 to 0xFFFFFF (up to 254 hex nibbles)

 

re-establish-session

Syntax 
re-establish-session padr
no re-establish-session
Context 
config>subscr-mgmt>ppp-policy
Description 

This command enables host to reconnect and override existing session.

If disabled and a subscriber abruptly terminates a PPP sessions without sending a PADT to the BNG, the BNG denies any reconnect attempts until the stale PPP session has expired. With this, enabled re-establish-session eliminates the waiting period by allowing immediate PPP reconnection attempts.

The no form of this command reverts to the default.

reject-disabled-ncp

Syntax 
[no] reject-disabled-ncp
Context 
config>subscr-mgmt>ppp-policy
Description 

This command forces an LCP Protocol Reject when receiving an IPv6CP Configure Request message while IPv6 is not configured or when receiving an IPv4CP Configure Request message and no local IPv4 address is assigned.

By default, an IPv4CP/IPv6CP Configure Request message is silently ignored when IPv4/IPv6 is not configured.

reject-disabled-ncp

Syntax 
[no] reject-disabled-ncp
Context 
config>subscr-mgmt>ppp-policy
Description 

This command forces an LCP Protocol Reject when receiving an IPv6CP Configure Request message while IPv6 is not configured.

By default, an IPv6CP Configure Request message is silently ignored when IPv6 is not configured.

reply-on-padt

Syntax 
[no] reply-on-padt
Context 
config>subscr-mgmt>ppp-policy
Description 

This command enables replying to PPPoE Active Discovery Terminate (PADT) packets. Some of the PPPoE clients expect reply on PADT message before the context of the session is cleared up. To support such client, a command enabling reply to PADT is provided.

The no form of this command reverts to the default.

session-timeout

Syntax 
session-timeout timeout
no session-timeout
Context 
config>subscr-mgmt>ppp-policy
Description 

This command defines the time before the PPP session is terminated.

A RADIUS specified session-timeout (attribute [27] Session-Timeout) overrides the CLI configured value.

The no form of this command reverts to the default.

Parameters 
timeout—
Specifies the session timeout in seconds.
Values—
1 to 31104000

 

unique-sid-per-sap

Syntax 
unique-sid-per-sap [per-msap]
no unique-sid-per-sap
Context 
config>subscr-mgmt>ppp-policy
Description 

This command assigns a unique session ID to each PPPoE session with different MAC addresses that are active on a single SAP.

On a capture SAP, a unique session ID is assigned per capture SAP: multiple sessions with different MAC addresses that are active on the same or different MSAP have a unique session ID per capture SAP.

With the optional parameter per-msap, a unique session ID is assigned per MSAP:

  1. multiple sessions with different MAC addresses that are active on the same MSAP have a unique session ID per MSAP
  2. multiple sessions with different MAC addresses that are active on different MSAPs are not guaranteed to have a unique session ID

The maximum session ID range is 1 to 8191.

By default, all PPPoE sessions with different MAC address on a given SAP or MSAP have session-id 1.

The no form of this command reverts to the default.

Parameters 
per-msap —
Assigns a unique session id for each session with different MAC address that is active on the same MSAP. This parameter has no effect on regular SAPs.

5.4.2.1.2. MLPPP on LNS Commands

accept-mrru

Syntax 
[no] accept-mrru
Context 
config>subscr-mgmt>ppp-policy>mlppp
Description 

This command is applicable only to LAC. MRRU option is an indication that the session is of MLPPPoX type. The 7750 SR LAC never initiates the MRRU option in LCP negotiation process. However, it responds to MRRU negotiation request by the client.

This command provides an option to specifically enable or disable negotiation of MLPPPoX on a capture SAP level or on a group interface level.

The no form of this command causes the MRRU option in LCP to not be negotiated by LAC.

admin-state

Syntax 
admin-state {up | down}
no admin-state
Context 
config>router>l2tp>group>tunnel>mlppp
config>service>vprn>l2tp>group>tunnel>mlppp
Description 

This command enables MLPPP for this tunnel group and is applicable only to LNS.

The tunnel can be explicitly activated (if the parent group is in a no shutdown state) or deactivated by the up and down keywords.

If there the admin state is not configured, the tunnel inherits its administrative state from its parent (group).

The no form of this command causes the tunnel administrative state to be inherited from the group.

Parameters 
up—
Specifies that the tunnel is to be administratively up.
down—
Specifies that the tunnel is to be administratively down.

endpoint

Syntax 
endpoint ip ip-address
endpoint mac ieee-address
endpoint system-ip
endpoint system-mac
no endpoint
Context 
config>router>l2tp>group>mlppp
config>router>l2tp>group>tunnel>mlppp
config>service>vprn>l2tp>group>mlppp
config>service>vprn>l2tp>group>tunnel>mlppp
config>subscr-mgmt>ppp-plcy>mlppp
Description 

When configured under the l2tp hierarchy, this command is applicable to LNS.

Within the ppp-policy, this command is applicable only to LAC.

The endpoint, according to RFC 1990, represents the system transmitting the packet. It is used during MLPPPoX negotiation phase to distinguish this peer from all others.

In the case that the client rejects the endpoint option during LCP negotiation, the LAC and the LNS must be able to negotiate the LCP session without the endpoint option.

The no form of this command disables sending endpoint option in LCP negotiation.

Parameters 
ip-address
Specifies the IPv4 address (class 2).
system-ip—
Specifies to use the system IPv4 address (class 2).
ieee-address
Specifies the MAC address of the interface (class 3).
system-mac—
Specifies to use the MAC address of the system (class 3).

interleave

Syntax 
[no] interleave
Context 
config>router>l2tp>group>mlppp
config>service>vprn>l2tp>group>mlppp
Description 

This command is applicable only to LNS. Interleaving is supported only on MLPPPoX bundles that contain a single member link. If more than one link is present in the MLPPPoX bundle, interleaving is automatically disabled and a TRAP/log (tmnxMlpppBundleIndicatorsChange) is generated.

The minimum supported rate of the link on which interleaving is performed is 1 kb/s.

If configured at this level, interleaving is enabled on all tunnels within the group, unless it is explicitly disable per tunnel.

The no form of this command reverts to the default.

interleave

Syntax 
interleave {always | never}
no interleave
Context 
config>router>l2tp>group>tunnel>mlppp
config>service>vprn>l2tp>group>tunnel>mlppp
Description 

This command configures the user of link fragmentation and interleaving and is applicable only to LNS. Interleaving is supported only on MLPPPoX bundles that contain a single member link. If more than one link is present in the MLPPPoX bundle, interleaving is automatically disabled and a TRAP/log (tmnxMlpppBundleIndicatorsChange) is generated.

The minimum supported rate of the link on which interleaving is performed is 1 kb/s.

Interleaving configured on this level overwrites the configuration option under the group hierarchy. If the no form of this command is configured for interleaving at this level, the interleaving configuration inherits the configuration option configured under the L2TP group.

The no form of this command reverts to the default.

Parameters 
always—
Always perform interleaving on single linked MLPPPoX sessions within this tunnel, regardless of the configuration option for interleaving under the group level.
never—
Never perform interleaving on single linked MLPPPoX sessions within this tunnel, regardless of the configuration option for interleaving under the group level.

load-balance-method

Syntax 
load-balance-method {per-session | per-tunnel}
no load-balance-method
Context 
config>router>l2tp>group
config>router>l2tp>group>tunnel
config>service>vprn>l2tp>group
config>service>vprn>l2tp>group>tunnel
Description 

This command is applicable only to LNS. By default traffic load balancing between the BB-ISAs is based on sessions. Each session is individually assigned to an BB-ISA during session establishment phase.

By introducing MLPPPoX, all sessions of a bundle must be terminated on the same LNS BB-ISA. This is necessary for two reasons:

  1. QoS in the carrier IOM has a uniform view of the subscriber
  2. a single BB-ISA is responsible for MLPPPoX encapsulation/fragmentation for a given bundle.

Therefore, if fragmentation is enabled, load-balancing per tunnel must be configured. In the per tunnel load-balancing mode, all sessions within the same tunnel are terminated on the same LNS BB-ISA.

In the case that we have MLPPPoX sessions with a single member link, both load-balancing methods are valid.

The no form of this command reverts to the default.

Default 

load-balance-method per-session

Parameters 
per-session—
The traffic load balancing between the LNS BB-ISAs is based on individual PPPoE sessions.
per-tunnel—
The traffic load balancing between the LNS BB-ISAs is based on tunnels.

max-fragment-delay

Syntax 
max-fragment-delay delay
no max-fragment-delay
Context 
config>router>l2tp>group>mlppp
config>router>l2tp>group>tunnel>mlppp
config>service>vprn>l2tp>group>mlppp
config>service>vprn>l2tp>group>tunnel>mlppp
Description 

This command is applicable only to LNS. It determines the maximum fragment delay caused by the transmission that is imposed on a link.

Fragmentation can be used to interleave high priority packet in-between low priority fragments on a MLPPPoX session with a single link or on a MLPPPoX session with multiple links to better load balance traffic over multiple member links.

Parameters 
delay—
Specifies the interval in milliseconds.
Values—
5 to 1000ms

 

max-link

Syntax 
max-links max-links
no max-links
Context 
config>router>l2tp>group>mlppp
config>router>l2tp>group>tunnel>mlppp
config>service>vprn>l2tp>group>mlppp
config>service>vprn>l2tp>group>tunnel>mlppp
Description 

This command is applicable only to LNS. It determines the maximum number of links that can be put in a bundle.

Any attempt of a session to join a bundle that is above the max-link limit is rejected.

If interleaving is configured, it is recommended that max-links be set to 1 or a version of the command is used (no max-links). Both have the same effect.

The configuration under the tunnel hierarchy overrides the configuration under the group hierarchy.

The no form of this command reverts to the default.

Default 

max-links 1

Parameters 
max-links—
Specifies the maximum number of links in a bundle.
Values—
1 to 8

 

reassembly-timeout

Syntax 
reassembly-timeout {timeout}
no reassembly-timeout
Context 
config>router>l2tp>group>mlppp
config>router>l2tp>group>tunnel>mlppp
config>service>vprn>l2tp>group>mlppp
config>service>vprn>l2tp>group>tunnel>mlppp
Description 

This command is applicable only to LNS. It determines the time during which the LNS keeps fragments of the same packet in the buffer before it discards them. The assumption is that if the fragments do not arrive within certain time, the chance is that they were lost somewhere in the network. In this case the partial packet cannot be reassembled and all fragments that has arrived up to this point and are stored in the buffer IS discarded to free up the buffer. Otherwise, a condition arises in which partial packets are held in the buffer until the buffer is exhausted.

The configuration under the tunnel hierarchy overrides the configuration under the group hierarchy.

The no form of this command reverts to the default.

Default 

reassembly-timeout 1000

Parameters 
timeout
Specifies the reassembly timeout value.
Values—
100, 1000 milliseconds

 

short-sequence-numbers

Syntax 
[no] short-sequence-numbers
Context 
config>subscr-mgmt>ppp-policy>mlppp
Description 

This command enables a peer request to send short sequence numbers. This command is applicable to LAC and LNS. By default, MLPPPoX negotiates 24bit long sequence numbers. This command allows this to be changed to shorter, 12-bit sequence numbers.

The no form of this command reverts to the default.

5.4.2.1.3. PPP/PPPoE Service Commands

ppp

Syntax 
[no] ppp
Context 
config>service>ies>sub-if>grp-if
config>service>vprn>sub-if>grp-if
Description 

This command configures PPP parameters.

The no form of this command reverts all PPP parameters from the PPP context to their defaults.

Default 

ppp

pppoe

Syntax 
[no] pppoe
Context 
config>service>ies>sub-if>grp-if
config>service>vprn>sub-if>grp-if
Description 

This command enables the context to configure PPPoE parameters.

The no form of this command reverts all PPPoE parameters from the PPPoE context to their defaults.

Default 

pppoe

anti-spoof

Syntax 
anti-spoof pppoe-anti-spoofing-type
no anti-spoof
Context 
config>service>ies>sub-if>grp-if>pppoe
config>service>vprn>sub-if>grp-if>pppoe
Description 

This command specifies the type of PPPoE anti-spoof filtering to use.

The no form of this command reverts to the default.

Default 

anti-spoof mac-sid

Parameters 
pppoe-anti-spoofing-type—
Specifies the PPPoE anti-spoof filtering.
Values—
mac-sid, mac-sid-ip

 

dhcp-client

Syntax 
dhcp-client
Context 
config>service>ies>sub-if>grp-if>pppoe
config>service>vprn>sub-if>grp-if>pppoe
Description 

This command enables the context to configure the PPPoE-to-DHCP options.

client-id

Syntax 
client-id {mac-pppoe-session-id}
no client-id
Context 
config>service>ies>sub-if>grp-if>pppoe>dhcp-client
config>service>vprn>sub-if>grp-if>pppoe>dhcp-client
Description 

This command inserts a DHCP client identifier option 61 in DHCP client messages for PPPoE sessions that obtain IPv4 addresses from a third party DHCP server. By default, a DHCP client identifier option 61 is not included.

The no form of this command reverts to the default.

Default 

no client-id

Parameters 
mac-pppoe-session-id—
Specifies that the DHCP client identifier option 61 contains a type value with type set to zero (1 octet) and value set to the PPPoE client MAC address (6 octets) and the PPPoE session ID (2 octets). For example:

Opt 61 (hex) = 00 00 10 94 A0 45 E5 00 01

where:

00 = type

00 10 94 A0 45 E5 = PPPoE client MAC address

00 01 = PPPoE session ID

policy

Syntax 
policy ppp-policy-name
no policy
Context 
config>service>vprn>sub-if>grp-if>pppoe
config>service>vprn>sub-if>grp-if>ppp
config>service>ies>sub-if>grp-if>pppoe
config>service>ies>sub-if>grp-if>ppp
Description 

This command specifies the PPPoE policy on this interface.

The no form of this command reverts to the default.

Default 

policy “default”

Parameters 
ppp-policy-name—
Specifies the PPP policy name up to 32 characters.

python-policy

Syntax 
python-policy [policy-name]
no python-policy
Context 
config>aaa>diam-peer-plcy
Description 

This command specified the python-policy for Diameter messages received or transmitted on the diameter peers defined in the diameter-peer-policy.

The no form of this command reverts to the default.

Parameters 
policy-name—
Specifies the name of the Python policy, up to 32 characters.

sap-session-limit

Syntax 
sap-session-limit sap-session-limit
no sap-session-limit
Context 
config>service>ies>sub-if>grp-if>pppoe
config>service>vprn>sub-if>grp-if>pppoe
Description 

This command specifies the number of PPPoE hosts per SAP allowed for this group-interface.

The no form of this command reverts to the default.

Default 

sap-session-limit 1

Parameters 
sap-session-limit—
Specifies the number of PPPoE hosts per SAP allowed.
Note:

The operational maximum value may be smaller due to equipped hardware dependencies.

Values—
1 to 131071

 

session-limit

Syntax 
session-limit session-limit
no session-limit
Context 
config>service>ies>sub-if>grp-if>pppoe
config>service>vprn>sub-if>grp-if>pppoe
config>service>ies>sub-if>pppoe
config>service>vprn>sub-if>pppoe
config>service>ies>sub-if>grp-if>ppp
config>service>vprn>sub-if>grp-if>ppp
Description 

This command specifies the number of PPPoE hosts allowed for this group interface.

The no form of this command reverts to the default.

Default 

session-limit 1

Parameters 
session-limit—
Specifies the number of PPPoE hosts allowed.
Note:

The operational maximum value may be smaller due to equipped hardware dependencies.

Values—
1 to 131071
1 to 262143 (retail subscriber interface)

 

user-db

Syntax 
user-db local-user-db-name
no user-db
Context 
config>service>ies>sub-if>grp-if>pppoe
config>service>vprn>sub-if>grp-if>pppoe
config>service>ies>sub-if>grp-if>ppp
config>service>vprn>sub-if>grp-if>ppp
Description 

This command configures the local user database to use for PPP PAP/CHAP authentication

The no form of this command reverts to the default.

Parameters 
local-user-db-name—
Specifies the local user database name up to 32 characters.

5.4.2.1.4. RADIUS Attribute Commands

acct-authentic

Syntax 
[no] acct-authentic
Context 
config>subscr-mgmt>auth-policy>include-radius-attribute
config>subscr-mgmt>acct-plcy>include-radius-attribute
Description 

This command enables the generation of the acct-authentic RADIUS attribute.

The no form of this command reverts to the default.

acct-delay-time

Syntax 
[no] acct-delay-time
Context 
config>subscr-mgmt>auth-policy>include-radius-attribute
config>subscr-mgmt>acct-plcy>include-radius-attribute
Description 

This command enables the generation of the acct-delay-time RADIUS attribute.

The no form of this command reverts to the default.

called-station-id

Syntax 
[no] called-station-id
Context 
config>subscr-mgmt>auth-policy>include-radius-attribute
config>subscr-mgmt>acct-plcy>include-radius-attribute
Description 

This command includes called station id attributes.

The no form of this command reverts to the default.

calling-station-id

Syntax 
calling-station-id
calling-station-id {mac | remote-id | sap-id | sap-string}
no calling-station-id
Context 
config>service>ies>if>sap
config>service>ies>sub-if>grp-if>sap
config>service>vpls>sap
config>service>vprn>if>sap
config>service>vprn>sub-if>grp-if>sap
config>subscr-mgmt>auth-plcy>include-radius-attribute
config>subscr-mgmt>acct-plcy>include>include-radius-attribute
Description 

This command enables the inclusion of the calling-station-id attribute in RADIUS authentication requests and RADIUS accounting messages. The value inserted is set at the SAP level. If no calling-station-id value is set at the SAP level, the calling-station-id attribute is not sent.

The no form of this command reverts to the default.

Parameters 
mac—
Specifies that the mac-address is sent.
remote-id—
Specifies that the remote-id is sent.
sap-id—
Specifies that the SAP ID is sent.
sap-string—
Specifies that the value is the inserted value set at the SAP level. If no calling-station-id value is set at the SAP level, the calling-station-id attribute is not sent.

circuit-id

Syntax 
[no] circuit-id
Context 
config>subscr-mgmt>auth-policy>include-radius-attribute
config>subscr-mgmt>acct-plcy>include-radius-attribute
Description 

This command enables the generation of the agent-circuit-id for RADIUS.

The no form of this command reverts to the default.

delegated-ipv6-prefix

Syntax 
[no] delegated-ipv6-prefix
Context 
config>subscr-mgmt>auth-policy>include-radius-attribute
config>subscr-mgmt>acct-plcy>include-radius-attribute
Description 

This command enables the generation of the delegated-ipv6-prefix RADIUS attribute.

The no form of this command disables the generation of the delegated-ipv6-prefix RADIUS attribute.

framed-interface-id

Syntax 
[no] framed-interface-id
Context 
config>subscr-mgmt>acct-plcy>include-radius-attribute
Description 

This command enables the generation of the framed-interface-id RADIUS attribute.

The no form of this command disables the framed-interface-id RADIUS attribute.

framed-ip-addr

Syntax 
[no] framed-ip-addr
Context 
config>subscr-mgmt>acct-plcy>include-radius-attribute
Description 

This command enables the inclusion of the framed-ip-addr attribute.

The no form of this command disables the inclusion of the framed-ip-addr attribute.

framed-ip-netmask

Syntax 
[no] framed-ip-netmask
Context 
config>subscr-mgmt>acct-plcy>include-radius-attribute
Description 

This command enables the inclusion of the framed-ip-netmask attribute.

The no form of this command disables the inclusion of the framed-ip-netmask attribute.

framed-ipv6-prefix

Syntax 
[no] framed-ipv6-prefix
Context 
config>subscr-mgmt>auth-policy>include-radius-attribute
config>subscr-mgmt>acct-plcy>include-radius-attribute
Description 

This command enables the generation of the framed-ipv6-prefix RADIUS attribute.

The no form of this command disables the generation of the framed-ipv6-prefix RADIUS attribute.

ipv6-address

Syntax 
[no] framed-ipv6-address
Context 
config>subscr-mgmt>auth-policy>include-radius-attribute
config>subscr-mgmt>acct-plcy>include-radius-attribute
Description 

This command enables the generation of the ipv6-address RADIUS attribute.

The no form of this command disables the generation of the ipv6-address RADIUS attribute.

mac-address

Syntax 
[no] mac-address
Context 
config>subscr-mgmt>auth-policy>include-radius-attribute
config>subscr-mgmt>acct-plcy>include-radius-attribute
Description 

This command enables the generation of the client MAC address RADIUS attribute.

The no form of this command disables the generation of the client MAC address RADIUS attribute.

nas-identifier

Syntax 
[no] nas-identifier
Context 
config>subscr-mgmt>auth-policy>include-radius-attribute
config>subscr-mgmt>acct-plcy>include-radius-attribute
Description 

This command enables the generation of the nas-identifier RADIUS attribute.

The no form of this command disables the generation of the nas-identifier RADIUS attribute.

nas-port

Syntax 
[no] nas-port bit-specification binary-spec
Context 
config>subscr-mgmt>auth-policy>include-radius-attribute
config>subscr-mgmt>acct-plcy>include-radius-attribute
Description 

This command enables the generation of the nas-port RADIUS attribute. You enter decimal representation of a 32-bit string that indicates your port information. This 32-bit string can be compiled based on different information from the port (data types). By using syntax number-of-bits data-type you indicate how many bits from the 32 bits are used for the specific data type. These data types can be combined up to 32 bits in total. In between the different data types 0's and/or 1's as bits can be added.

The no form of this command disables the nas-port configuration.

Parameters 
bit-specification binary-spec—
Specifies the NAS port attribute.
Values—

binary-spec

<bit-specification> <binary-spec>

bit-specification

0 | 1 | <bit-origin>

bit-origin

*<number-of-bits><origin>

number-of-bits

1 to 32

origin

o | i | s | m | p

o

outer VLAN ID

i

inner VLAN ID

s

slot number

m

MDA number

p

port number or lag-id

 

Output 

Sample
*12o*12i00*2s*2m*2p => oooo oooo oooo iiii iiii iiii 00ss mmpp
If outer vlan = 0 & inner vlan = 1 & slot = 3 & mda = 1 & port = 1
=>  0000 0000 0000 0000 0000 0001 0011 0101 => nas-port = 309 

nas-port-id

Syntax 
[no] nas-port-id [prefix-string string] [suffix suffix-option]
Context 
config>subscr-mgmt>auth-policy>include-radius-attribute
config>subscr-mgmt>acct-plcy>include-radius-attribute
Description 

This command enables the generation of the nas-port-id RADIUS attribute. Optionally, the value of this attribute (the SAP ID) can be prefixed by a fixed string and suffixed by the circuit-id or the remote-id of the client connection. If a suffix is configured, but no corresponding data is available, the suffix used is 0/0/0/0/0/0.

The no form of this command disables the generation of the nas-port-id RADIUS attribute.

Parameters 
string
Specifies that a user configurable string is added to the RADIUS NAS port attribute, up to 8 characters.
suffix-option
Specifies the suffix type to be added to the RADIUS NAS port attribute.
Values—
circuit-id, remote-id

 

nas-port-type

Syntax 
nas-port-type
nas-port-type value
no nas-port-type
Context 
config>subscr-mgmt>auth-plcy>include-radius-attribute
config>subscr-mgmt>acct-plcy>include-radius-attribute
Description 

This command enables the generation of the nas-port-type RADIUS attribute. If set to nas-port-type, the following is sent: values: 32 (null-encap), 33 (dot1q), 34 (qinq), 15 (DHCP hosts). The nas-port-type can also be set as a specified value, with an integer from 0 to 255.

The no form of this command disables the generation of the nas-port-type RADIUS attribute

Parameters 
value
Specifies an enumerated integer that specifies the value that is put in the RADIUS nas-port-type attribute.
Values—
0 to 255

 

nat-port-range

Syntax 
[no] nat-port-range
Context 
config>subscr-mgmt>acct-plcy>include-radius-attribute
Description 

This command enables the generation of the of nat-port-range attribute.

The no form of this command disables the generation of the nat-port-range attribute.

remote-id

Syntax 
[no] remote-id
Context 
config>subscr-mgmt>auth-policy>include-radius-attribute
config>subscr-mgmt>acct-plcy>include-radius-attribute
Description 

This command enables the generation of the agent-remote-id for RADIUS.

The no form of this command disables the generation of the agent-remote-id for RADIUS.

sap-session-index

Syntax 
[no] sap-session-index
Context 
config>subscr-mgmt>auth-policy>include-radius-attribute
Description 

This command includes sap-session-index attributes.

The no form of this command excludes sap-session-index attributes.

sla-profile

Syntax 
[no] sla-profile
Context 
config>subscr-mgmt>acct-plcy>include-radius-attribute
Description 

This command specifies that SLA profile attributes should be included into RADIUS accounting messages.

The no form of this command excludes SLA profile attributes into RADIUS accounting messages.

sub-profile

Syntax 
[no] sub-profile
Context 
config>subscr-mgmt>acct-plcy>include-radius-attribute
Description 

This command specifies that subscriber profile attributes should be included into RADIUS accounting messages.

The no form of this command excludes subscriber profile attributes into RADIUS accounting messages.

subscriber-id

Syntax 
[no] subscriber-id
Context 
config>subscr-mgmt>acct-plcy>include-radius-attribute
Description 

This command specifies that subscriber ID attributes should be included into RADIUS accounting messages.

The no form of this command excludes subscriber ID attributes into RADIUS accounting messages.

radius-accounting-server

Syntax 
radius-accounting-server
Context 
config>app-assure>rad-acct-plcy
config>aaa>l2tp-tunnel-acct-plcy
Description 

This command creates the context for defining RADIUS accounting server attributes under a given session authentication policy.

access-algorithm

Syntax 
access-algorithm {direct | round-robin}
Context 
config>app-assure>rad-acct-plcy>server
Description 

This command configures the algorithm used to access the list of configured RADIUS servers.

Default 

access-algorithm direct

Parameters 
direct —
Specifies that the first server is used as primary server for all requests, the second as secondary and so on.
round-robin—
Specifies that the first server is used as primary server for the first request, the second server as primary for the second request, and so on. If the router gets to the end of the list, it starts again with the first server.

retry

Syntax 
retry count
Context 
config>app-assure>rad-acct-plcy>server
Description 

This command configures the number of times the router attempts to contact the RADIUS server for authentication.

The no form of this command reverts to the default.

Note:

The retry count includes the first attempt.

Default 

retry 3 (the initial attempt as well as two retried attempts)

Parameters 
count—
Specifies the retry count.
Values—
1 to 10

 

router

Syntax 
router router-instance
router service-name service-name
no router
Context 
config>app-assure>rad-acct-plcy>server
Description 

This command specifies the number of times the router attempts to contact the RADIUS server for authentication, if not successful the first time.

The no form of this command reverts to the default value.

server

Syntax 
server server-index address ip-address secret key [hash | hash2 | custom] [port port] [create]
no server server-index
Context 
config>app-assure>rad-acct-plcy>server
Description 

This command adds a RADIUS server and configures the RADIUS server IP address, index, and key values.

Up to five RADIUS servers can be configured at any one time. RADIUS servers are accessed in order from lowest to highest index for authentication requests until a response from a server is received. A higher indexed server is only queried if no response is received from a lower indexed server (which implies that the server is not available). If a response from a server is received, no other RADIUS servers are queried.

The no form of this command removes the server from the configuration.

Parameters 
server-index—
The index for the RADIUS server. The index determines the sequence in which the servers are queried for authentication requests. Servers are queried in order from lowest to highest index.
Values—
1 to 16 (a maximum of 5 accounting servers)

 

ip-address—
The IP address of the RADIUS server. Two RADIUS servers cannot have the same IP address. An error message is generated if the server address is a duplicate.
secret key
The secret key to access the RADIUS server. This secret key must match the password on the RADIUS server.
Values—
secret-key — A string up to 20 characters
hash-key — A string up to 33 characters
hash2-key — A string up to 55 characters

 

hash—
Specifies the key is entered in an encrypted form. If the hash or hash2 parameter is not used, the key is assumed to be in an unencrypted, clear text form. For security, all keys are stored in encrypted form in the configuration file with the hash or hash2 parameter specified.
hash2—
Specifies the key is entered in a more complex encrypted form that involves more variables than the key value alone, meaning that the hash2 encrypted variable cannot be copied and pasted. If the hash or hash2 parameter is not used, the key is assumed to be in an unencrypted, clear text form. For security, all keys are stored in encrypted form in the configuration file with the hash or hash2 parameter specified.
custom—
Specifies the custom encryption to management interface.
port—
Specifies the UDP port number on which to contact the RADIUS server for authentication.
Values—
1 to 65535

 

source-address-range

Syntax 
source-address-range start-ip-address end-ip-address
no source-address
Context 
config>aaa>isa-radius-plcy>servers
Description 

This command configures the source address range of the RADIUS messages.

The no form of this command reverts to the default value.

Parameters 
start-ip-address—
Specifies the start of the range of source addresses to be used for NAT RADIUS accounting.
end-ip-address—
Specifies the end of the range of source addresses to be used for NAT RADIUS accounting.

timeout

Syntax 
timeout seconds
Context 
config>app-assure>rad-acct-plcy>server
Description 

This command configures the number of seconds the router waits for a response from a RADIUS server.

The no form of this command reverts to the default value.

Default 

timeout 5

Parameters 
seconds—
Specifies the time the router waits for a response from a RADIUS server.
Values—
1 to 90

 

5.4.2.2. Service Commands

subscriber-interface

Syntax 
subscriber-interface ip-int-name [create]
subscriber-interface ip-int-name [create] fwd-service service-id fwd-subscriber-interface ip-int-name]
no subscriber-interface ip-int-name
Context 
config>service>ies
config>service>vprn
Description 

This command allows the operator to create special subscriber-based interfaces. It is used to contain multiple group interfaces. Multiple subnets associated with the subscriber interface can be applied to any of the contained group interfaces in any combination. The subscriber interface allows subnet sharing between group interfaces.

The no form of this command reverts to the default.

Parameters 
ip-int-name—
Specifies the interface name of a subscriber interface. If the string contains special characters (#, $, spaces, and so on), the entire string must be enclosed within double quotes.
service-id
Specifies the wholesale service ID or service name.
Values—
service-id: 1 to 214748364
svc-name: A string up to 64 characters

 

ip-int-name
Specifies the wholesale subscriber interface.

group-interface

Syntax 
group-interface ip-int-name [create] [type]
group-interface ip-int-name
Context 
config>service>ies>subscriber-interface
config>service>vprn>subscriber-interface
Description 

This command creates a group interface. This interface is designed for triple-play services where multiple SAPs are part of the same subnet. A group interface may contain one or more SAPs.

The no form of this command removes the group interface from the subscriber interface.

Parameters 
ip-int-name—
Specifies the interface name of a group interface. If the string contains special characters (#, $, spaces, and so on.), the entire string must be enclosed within double quotes.
bonding —
Specifies to use connection bonding.
gtp —
Specifies to use GTP.
lns —
Specifies to use LNS.
wlangw—
Specifies to use dynamic GRE encapsulation.

dhcp

Syntax 
dhcp
Context 
config>service>ies>subscriber-interface
config>service>vprn>subscriber-interface
Description 

This command enables the context to configure DHCP parameters.

client-applications

Syntax 
client-applications {[dhcp] [ppp]}
no client-applications
Context 
config>service>ies>subscriber-interface
config>service>vprn>subscriber-interface
Description 

This command enables DHCP relay and proxy-server for the configured client types.

The no form of this command reverts to the default.

Default 

dhcp

Parameters 
dhcp—
Enables IPoE clients to use the DHCP relay or proxy-server.
ppp—
Enables PPPoE clients to use the DHCP relay or proxy-server that PPPoE will attempt to request an IP address for a PPPoE client from the DHCP server(s) assigned to PPPoE node.

5.4.2.3. Show Commands

Note:

Command outputs in the following section are examples only; actual displays may differ depending on supported functionality and user configuration.

peer

Syntax 
peer ip-address [udp-port port]
peer ip-address statistics [udp-port port]
peer [draining] [blacklisted | selectable | unreachable]
Context 
show>router>l2tp
Description 

This command displays L2TP peer operational information.

Parameters 
ip-address—
Specifies the IP dress for the L2TP peer.
Values—

ipv4-address

a.b.c.d

ipv6-address

x:x:x:x:x:x:x:x (eight 16-bit pieces)

x:x:x:x:x:x:d.d.d.d

x - [0 to FFFF]H

d - [0 to 255]D

draining

keyword

statistics

keyword

port

[1 to 65535]

 

port—
Specifies the local UDP port of this L2TP
Values—
1 to 65535

 

draining—
Specifies to display information about the L2TP peer being drained.
blacklisted—
Specifies to display information about the peer has been deemed unreachable and has been put in the tunnel-selection-blacklist.
selectable—
Specifies to display information about the peer has been deemed unreachable for the time specified in tmnxL2tpXtTuSelBlacklistMaxTime and can now be selected for a single session, after which the reachability of the peer is reevaluated.
unreachable—
Specifies to display information about the sysUpTime when the peer was deemed unreachable for the last time.
Output 

The following output is an example of L2TP peer information.

Sample Output
show router l2tp peer 10.100.0.2
===============================================================================
Peer IP: 10.100.0.2
===============================================================================
Roles capab/actual: LAC LNS /LAC  -     Draining          : false
Tunnels           : 1                   Tunnels Active    : 0
Sessions          : 1                   Sessions Active   : 0
Reachability      : blacklisted         Time Unreachable  : 01/31/2013 08:55:06
Time Blacklisted  : 01/31/2013 08:55:06 Remaining (s)     : 34
===============================================================================
Conn ID                      Loc-Tu-ID Rem-Tu-ID State              Ses Active
  Group                                                             Ses Total
    Assignment
-------------------------------------------------------------------------------
977207296                    14911     0         closed             0
  base_lac_base_lns                                                 1
    t1
-------------------------------------------------------------------------------
No. of tunnels: 1
===============================================================================
 
 
show router l2tp tunnel detail
===============================================================================
L2TP Tunnel Status
==============================================================================
Connection ID: 831782912
State        : closedByPeer
IP           : 10.0.0.1
Peer IP      : 10.100.0.2
Tx dst-IP    : 10.100.0.2
Rx src-IP    : 10.100.0.2
Name         : lac
Remote Name  :
Assignment ID: t1
Group Name   : base_lac_base_lns
Acct. Policy : l2tp-base
Error Message: N/A
 
                                        Remote Conn ID    : 4294901760
Tunnel ID         : 12692               Remote Tunnel ID  : 65535
UDP Port          : 1701                Remote UDP Port   : 1701
Preference        : 50                  Receive Window    : 64
Hello Interval (s): 300
Idle TO (s)       : 5                   Destruct TO (s)   : 60
Max Retr Estab    : 5                   Max Retr Not Estab: 5
Session Limit     : 32767               AVP Hiding        : sensitive
Transport Type    : udpIp               Challenge         : never
Time Started      : 01/31/2013 08:56:58 Time Idle         : 01/31/2013 08:56:58
Time Established  : N/A                 Time Closed       : 01/31/2013 08:56:58
Stop CCN Result   : reqShutDown         General Error     : noError
Blacklist-state   : blacklisted
Blacklist Time    : 01/31/2013 08:56:58 Remaining (s)     : 49
-------------------------------------------------------------------------------
No. of tunnels: 1
===============================================================================
 

ppp-policy

Syntax 
ppp-policy [ppp-policy-name [association]]
Context 
show>subscr-mgmt
Description 

This command displays PPP policy information.

Parameters 
ppp-policy-name—
Specifies an existing PPP policy.
association—
Displays the object the PPP policy is associated.
Output 

The following output displays PPP policy information.

Sample Output
*A:ALA-49>show>subscr-mgmt# ppp-policy policy1
===============================================================================
PPP Policy "policy1"
===============================================================================
Last Mgmt Change     : 11/16/2003 20:06:39     PPP-mtu              : N/A
Keepalive Interval   : 10s                     Keepalive Multiplier : 1
Disable AC-Cookies   : No                      PADO Delay           : 0msec
Max Sessions-Per-Mac : 63                      Reply-On-PADT        : No
-------------------------------------------------------------------------------
PPP Custom Options
-------------------------------------------------------------------------------
Protocol Number Value
-------------------------------------------------------------------------------
No options configured.
===============================================================================
*A:ALA-49>show>subscr-mgmt# pppoe-policy policy1 association
===============================================================================
PPPoE Policy "policy1"
===============================================================================
-------------------------------------------------------------------------------
Interface Associations
-------------------------------------------------------------------------------
Service-Id : 20 (IES)
 - grp_pppoe1
 - grp_pppoe2
 - grp_pppoe3
===============================================================================
*A:ALA-49>show>subscr-mgmt# 

ipoe

Syntax 
ipoe
Context 
show>service>id
Description 

This command enables the context to display IPoE information.

session

Syntax 
session [sap sap-id] [mac ieee-address] [circuit-id circuit-id] [remote-id remote-id] [interface ip-int-name | ip-address] [inter-dest-id intermediate-destination-id] [no-inter-dest-id] [ip-address ip-prefix[/prefix-length]] [port port-id] [subscriber sub-ident-string] [sap-session-id sap-session-index] [detail] [wholesaler service-id] [router-advertisement-policy policy-name]
Context 
show>service>id>ipoe
Description 

This command displays the identified IPoE session details active on the specified service instance.

Parameters 
sap-id
Specifies the physical port identifier portion of the SAP definition.
ieee-address —
Specifies the 48-bit MAC address for the static ARP in the form aa:bb:cc:dd:ee:ff or aa-bb-cc-dd-ee-ff where aa, bb, cc, dd, ee, and ff are hexadecimal numbers. Allowed values are any non-broadcast, non-multicast MAC and non-IEEE reserved MAC addresses.
circuit-id—
Specifies the circuit ID up to 127 characters.
remote-id—
Specifies that information that goes into the remote-id sub-option in the DHCP relay packet, up to 255 characters.
ip-int-name—
Specifies the name of the IP interface up to 32 characters.
ip-address[/prefix-length]—
Specifies information for the specified IP address and mask.
no-inter-dest-id—
Displays the information of IPoE sessions that do not have an intermediate destination ID associated.
port-id
Displays information about the specified port ID.
sap-session-index—
Displays sap-session-index information.
service-id
Specifies the service ID of the wholesaler. This parameter applies only to the 7750 SR.
Values—

service-id:

1 to 2147483647

 

intermediate-destination-id—
Specifies the intermediate destination identifier which is encoded in the identification strings up to 32 characters.
sub-ident-string —
Specifies an existing subscriber identification profile.
detail—
Displays all IPoE session details.
policy-name—
Specifies the name of the router advertisement policy, up to 32 characters.
Output 

The following is an example of service IPoE session information.

Sample Output
# show service id 4000 ipoe session
===============================================================================
IPoE sessions for svc-id 4000
===============================================================================
Sap Id                           Mac Address         Up Time         MC-Stdby
    Subscriber-Id
        [CircuitID] | [RemoteID]
-------------------------------------------------------------------------------
1/1/4:1201.27                    00:51:00:00:00:0c   0d 00:00:18
    ipoe-session-001
-------------------------------------------------------------------------------
CID | RID displayed when included in session-key
Number of sessions : 1
===============================================================================
 
 
# show service id 4000 ipoe session detail
===============================================================================
IPoE sessions for service 4000
===============================================================================
SAP                     : 1/1/4:1201.27
Mac Address             : 00:51:00:00:00:0c
Circuit-Id              : circuit-id-1
Remote-Id               : remote-id-1
Session Key             : sap-mac
 
MC-Standby              : No
 
Subscriber-interface    : sub-int-1
Group-interface         : group-int-1
 
Up Time                 : 0d 00:01:01
Session Time Left       : N/A
Last Auth Time          : 02/28/2015 01:01:09
Min Auth Intvl (left)   : 0d 00:05:00 (0d 00:03:59)
Persistence Key         : N/A
 
Subscriber              : "ipoe-session-001"
Sub-Profile-String      : "sub-profile-1"
SLA-Profile-String      : "sla-profile-1"
ANCP-String             : ""
Int-Dest-Id             : ""
App-Profile-String      : ""
Category-Map-Name       : ""
Acct-Session-Id         : "144DFF0000001354D806D5"
Sap-Session-Index       : 1
 
IP Address              : 10.10.1.201/24
IP Origin               : Radius
Primary DNS             : N/A
Secondary DNS           : N/A
Primary NBNS            : N/A
Secondary NBNS          : N/A
Address-Pool            : N/A
 
IPv6 Prefix             : 2001:db8:a:111::/64
IPv6 Prefix Origin      : Radius
IPv6 Prefix Pool        : ""
IPv6 Del.Pfx.           : 2001:db8:a001:a100::/56
IPv6 Del.Pfx. Origin    : Radius
IPv6 Del.Pfx. Pool      : ""
IPv6 Address            : 2001:db8:a:101::aaa:1
IPv6 Address Origin     : Radius
IPv6 Address Pool       : ""
Primary IPv6 DNS        : N/A
Secondary IPv6 DNS      : N/A
 
Radius Session-TO       : N/A
Radius Class            :
Radius User-Name        : 00:51:00:00:00:0c
-------------------------------------------------------------------------------
Number of sessions : 1
===============================================================================
*A:Dut-A# show service id 13 ipoe session router-advertisement-policy ra-policy-01
===============================================================================
IPoE sessions for svc-id 13
===============================================================================
Sap Id                           Mac Address         Up Time         MC-Stdby
    Subscriber-Id                                                    
        [CircuitID] | [RemoteID]                                     
-------------------------------------------------------------------------------
1/1/1:13                         00:00:00:00:00:13   0d 00:13:06     
    sub-1
1/1/1:13                         00:00:00:00:00:14   0d 00:08:03     
    sub-1
1/1/1:13                         00:00:00:00:00:15   0d 00:06:23     
    sub-1
-------------------------------------------------------------------------------
CID | RID displayed when included in session-key
Number of sessions : 3
===============================================================================
*A:Dut-A# 

summary

Syntax 
summary
Context 
show>service>id>ipoe
Description 

This command displays a summary of IPoE information.

ppp

Syntax 
ppp
Context 
show>service>id
Description 

This command enables the context to display PPP information.

session

Syntax 
session [user-name user-name] [sub-ppp-type sub-ppp-type] [interface {ip-int-name | ip-address}] [inter-dest-id intermediate-destination-id] [no-inter-dest-id] [ip-address ip-prefix[/prefix-length]] [port port-id] [sap sap-id] [termination-type ppp-session-type] [mlppp] [steering-profile steering-profile] [circuit-id circuit-id] [remote-id remote-id]
session [user-name user-name] [circuit-id circuit-id] [remote-id remote-id] detail
session [user-name user-name] [circuit-id circuit-id] [remote-id remote-id] statistics
Context 
show>service>id>ppp
Description 

This command displays PPP session information.

Parameters 
user-name—
Specifies the user name, up to 110 characters.
sub-ppp-type—
Specifies the sub-PPP type.
Values—
oa, oe, oeoa, ol2tp

 

ip-int-name—
Specifies the IP interface name, up to 32 characters.
ip-address—
Specifies the IP address of the PPP session.
Values—
a.b.c.d

 

intermediate-destination-id—
Specifies the intermediate destination ID, up to 32 characters.
no-inter-dest-id—
Displays the information of PPP sessions that do not have an intermediate destination ID associated.
ip-prefix[/prefix-length]
Specifies information for the specified IPv4 or IPv6 address and mask.
port-id—
Displays information about the specified port ID.
sap-id—
Specifies the physical port identifier portion of the SAP definition.
ppp-session-type—
Specifies the PPP session type.
Values—
local, wholesale-local, retail-local, l2tp

 

mlppp—
Specifies the MLPPP.
steering-profile—
Specifies the steering profile, up to 32 characters.
circuit-id—
Specifies the circuit ID, up to 256 characters.
remote-id—
Specifies the remote ID, up to 256 characters.
detail—
Displays all PPP session details.
statistics—
Displays all PPP session statistics.

statistics

Syntax 
statistics
statistics interface {ip-int-name | ip-address}
statistics sap sap-id
Context 
show>service>id>ppp
Description 

This command displays PPP statistics.

Parameters 
ip-int-name—
Displays information about the specified interface, up to 32 characters.
ip-address—
Displays information about the specified IP address.
Values—
a.b.c.d

 

sap-id—
Displays information for the specified SAP.

summary

Syntax 
summary
Context 
show>service>id>ppp
Description 

This command displays PPP summary information.

pppoe

Syntax 
pppoe
Context 
show>service>id
Description 

This command enables the context to display PPPoE information.

session

Syntax 
session [interface ip-int-name | ip-address | sap sap-id] [session-id session-id] [mac ieee-address] [ip-address ip-address[/mask]] [port port-id] [no-inter-dest-id | inter-dest-id intermediate-destination-id] [steering-profile steering-profile] [router-advertisement-policy policy-name] [detail | statistics]
session l2tp-connection-id connection-id [detail | statistics]
Context 
show>service>id>pppoe
Description 

This command displays PPPoE session information.

Parameters 
ip-int-name
Specifies the IP interface name.
ip-address—
Specifies the IP address of the PPPoE session.
sap-id
Specifies the SAP ID.
session-id
Specifies the ID of the PPPoE session.
ieee-address
Specifies the MAC address of the PPPoE session.
port-id
Specifies the port ID.
no-inter-dest-id—
Displays the information of PPPoE sessions that do not have an intermediate destination ID associated.
intermediate-destination-id
Specifies the intermediate destination ID.
steering-profile
Specifies the name of the steering profile, up to a maximum of 32 characters.
policy-name
Specifies the name of the router advertisement policy, up to a maximum of 32 characters.
detail—
Displays detailed information.
statistics—
Displays statistics about the PPPoE session.
Output 

The following output displays PPPoE session information.

Sample Output
*A:ALA-49#show service id 20 pppoe session
===============================================================================
PPPoE sessions for svc-id 20
===============================================================================
Sap Id              Mac Address       Sid Up Time        IP Address
-------------------------------------------------------------------------------
1/1/3:200           00:00:00:00:00:03 1   1d 00:48:39    10.0.0.101
1/1/3:300           00:00:00:00:00:05 1   0d 00:01:08    10.0.0.119
-------------------------------------------------------------------------------
Number of sessions : 2
===============================================================================
*A:ALA-49#
 
 
*A:ALA-49# show service id 20 pppoe session ip-address 20.0.0.101 detail
===============================================================================
PPPoE sessions for svc-id 20
===============================================================================
Sap Id              Mac Address       Sid Up Time        IP Address
-------------------------------------------------------------------------------
1/1/3:200           00:00:00:00:00:03 1   1d 00:49:46    10.0.0.101
 
LCP State            : Opened
IPCP State           : Opened
PPP MTU              : 1492
PPP Auth-Protocol    : PAP
PPP User-Name        : user4@domain1
 
Subscriber-interface : sub_pppoe
Group-interface      : grp_pppoe2
 
Subscriber Origin    : RADIUS
Strings Origin       : RADIUS
IPCP Info Origin     : DHCP
 
Subscriber           : "radius_papchap4"
Sub-Profile-String   : "sub1"
SLA-Profile-String   : "sla1"
ANCP-String          : ""
Int-Dest-Id          : ""
App-Profile-String   : ""
 
Primary DNS          : N/A
Secondary DNS        : N/A
Primary NBNS         : N/A
Secondary NBNS       : N/A
 
Circuit-Id           : 2
Remote-Id            :
 
Session-Timeout      : N/A
-------------------------------------------------------------------------------
Number of sessions : 1
===============================================================================
*A:ALA-49# 
 
 
*A:ALA-49# show service id 20 pppoe session ip-address 20.0.0.101 statistics
===============================================================================
PPPoE sessions for svc-id 20
===============================================================================
Sap Id              Mac Address       Sid Up Time        IP Address
-------------------------------------------------------------------------------
1/1/3:200           00:00:00:00:00:03 1   1d 00:50:39    10.0.0.101
 
Packet Type               Received        Transmitted
-------------------------------------------------------------------------------
LCP Configure-Request     1               2
LCP Configure-Ack         1               1
LCP Configure-Nak         1               0
LCP Configure-Reject      0               0
LCP Terminate-Request     0               0
LCP Terminate-Ack         0               0
LCP Code-Reject           0               0
LCP Echo-Request          8927            866
LCP Echo-Reply            866             8927
LCP Protocol-Reject       0               0
LCP Discard-Request       0               0
-------------------------------------------------------------------------------
PAP Authenticate-Request  1               -
PAP Authenticate-Ack      -               1
PAP Authenticate-Nak      -               0
-------------------------------------------------------------------------------
CHAP Challenge            -               0
CHAP Response             0               -
CHAP Success              -               0
CHAP Failure              -               0
-------------------------------------------------------------------------------
IPCP Configure-Request    2               1
IPCP Configure-Ack        1               1
IPCP Configure-Nak        0               1
IPCP Configure-Reject     0               0
IPCP Terminate-Request    0               0
IPCP Terminate-Ack        0               0
IPCP Code-Reject          0               0
-------------------------------------------------------------------------------
Unknown Protocol          0               -
-------------------------------------------------------------------------------
Number of sessions : 1
===============================================================================
*A:ALA-49#
 
 
*A:Dut-C# show service id 2000 pppoe session detail
===============================================================================
PPPoE sessions for svc-id 2000
===============================================================================
Sap Id              Mac Address       Sid    Up Time               Type
    IP/L2TP-Id/Interface-Id
-------------------------------------------------------------------------------
2/1/5:2000          00:01:00:00:04:15 1      0d 00:05:07           Local
    239.1.5.22
 
LCP State            : Opened
IPCP State           : Opened
IPv6CP State         : Initial
PPP MTU              : 1492
PPP Auth-Protocol    : None
PPP User-Name        : (Not Specified)
 
Subscriber-interface : ies-2000-239.1.1.1
Group-interface      : grp-Vprn-2/1/5
 
Subscriber Origin    : RADIUS
Strings Origin       : RADIUS
IPCP Info Origin     : RADIUS
IPv6CP Info Origin   : None
 
Subscriber           : "hpolSub43"
Sub-Profile-String   : "hpolSubProf2"
SLA-Profile-String   : "hpolSlaProf1"
ANCP-String          : ""
Int-Dest-Id          : "2000"
App-Profile-String   : ""
Category-Map-Name    : ""
 
Primary DNS          : N/A
Secondary DNS        : N/A
Primary NBNS         : N/A
Secondary NBNS       : N/A
Address-Pool         : N/A
 
IPv6 Prefix          : N/A
IPv6 Del.Pfx.        : N/A
Primary IPv6 DNS     : N/A
Secondary IPv6 DNS   : N/A
 
Circuit-Id           : circuit 0
Remote-Id            : remote 00-00-00-00-00-00-eth0-2
Service-Name         :
 
Session-Timeout      : N/A
RADIUS Class         :
RADIUS User-Name     : 00:01:00:00:04:15
Data link            : aal5
Encaps 1             : notAvailable
Encaps 2             : pppoaLlc
-------------------------------------------------------------------------------
Overrides
-------------------------------------------------------------------------------
Direction Type           Key        PIR        CIR        CBS        MBS
-------------------------------------------------------------------------------
Egress    Agg-Rate-Limit N/A        24125940   N/A        N/A        N/A
-------------------------------------------------------------------------------
No. of Overrides: 1
-------------------------------------------------------------------------------
-------------------------------------------------------------------------------
Number of sessions   : 1
===============================================================================
*A:Dut-C# 
*A:Dut-A#show  service id 10 pppoe session router-advertisement-policy "ra-policy-01"
===============================================================================
PPPoE sessions for svc-id 1000
===============================================================================
Sap Id              Mac Address       Sid    Up Time         Type
    IP/L2TP-Id/Interface-Id                                      MC-Stdby
-------------------------------------------------------------------------------
1/1/20:841          00:00:64:19:01:02 1      0d 00:00:18     local
    192.168.0.10
    02:00:64:FF:FE:19:01:02
-------------------------------------------------------------------------------
Number of sessions   : 1
===============================================================================

statistics

Syntax 
statistics [{sap sap-id | interface ip-int-name | ip-address}]
Context 
show>service>id>pppoe
Description 

This command displays PPPoE statistics.

Parameters 
sap-id
Displays information for the specified SAP.
ip-int-name
Displays information about the specified interface.
ip-address—
Displays information about the specified IP address.
Output 

The following output displays PPPoE statistics information.

Sample Output
*A:ALA-49# show service id 20 pppoe statistics
===============================================================================
PPPoE statistics for IES service 20
===============================================================================
Packet Type         Received        Transmitted
-------------------------------------------------------------------------------
PADI                2               -
PADO                -               2
PADR                2               -
PADS                -               2
PADT                0               0
session             9838            9839
-------------------------------------------------------------------------------
Drop Counters
-------------------------------------------------------------------------------
Rx Invalid Version   : 0
Rx Invalid Type      : 0
Rx Invalid Code      : 0
Rx Invalid Session   : 0
Rx Invalid Length    : 0
Rx Invalid Tags      : 0
Rx Invalid AC-Cookie : 0
Rx Dropped           : 0
===============================================================================
*A:ALA-49#

summary

Syntax 
summary
Context 
show>service>id>pppoe
Description 

This command displays PPPoE summary information.

5.4.2.4. Clear Commands

pppoe

Syntax 
pppoe
Context 
clear>service>id
Description 

This command enables the context to clear PPPoE-related data for the specified service.

session

Syntax 
session all [no-padt]
session {interface ip-int-name | ip-address | sap sap-id} [mac ieee-address] [session-id session-id] [ip-address ip-address[/mask]] [port port-id] [no-inter-dest-id | inter-dest-id intermediate-destination-id] [no-padt]
Context 
clear>service>id>ppoe
Description 

This command clears PPPoE sessions.

Parameters 
ip-int-name—
Clears session information for the specified IP interface name.
ip-address—
Clears session information for the specified IP interface name.
mask—
Clears session information for the specified mask.
sap-id—
Clears session information for the specified SAP ID.
ieee-address—
Clears session information for the specified MAC address.
session-id—
Clears session information for the specified session ID.
port-id—
Clears session information for the specified port ID.
no-inter-dest-id—
Clears session information for the specified intermediate destination ID.
inter-dest-id—
Clears session information for the specified intermediate destination ID.
no-padt—
Clears session information for the PPPoE Active Discovery Terminate (PADT) packets transmitted by this PPPoE client.

statistics

Syntax 
statistics [{sap sap-id | interface ip-int-name | ip-address}]
Context 
clear>service>id>ppoe
Description 

This command clears PPPoE statistics.

5.4.2.5. Debug Commands

ppp

Syntax 
[no] ppp
Context 
debug>service>id
Description 

This command enables and configures PPP debugging.

event

Syntax 
[no] event
Context 
debug>service>id>ppp
Description 

This command enables debugging for specific PPPoE events.

dhcp-client

Syntax 
dhcp-client [terminate-only]
no dhcp-client
Context 
debug>service>id>ppp>event
Description 

This command enables debugging for specific DHCP client events.

Parameters 
terminate-only—
Displays terminate-only DHCP client information.

ppp

Syntax 
ppp [terminate-only]
no ppp
Context 
debug>service>id>ppp>event
Description 

This command enables debugging for PPP events.

Parameters 
terminate-only—
Enables debugging for terminate-only PPP events.

mac

Syntax 
[no] mac ieee-address
Context 
debug>service>id>ppp
Description 

This command shows PPP packets for the specified MAC address.

Parameters 
ieee-address—
Enables debugging for the specified MAC address.

packet

Syntax 
[no] packet
Context 
debug>service>id>ppp
Description 

This command enables debugging for specific PPPoE packets.

detail-level

Syntax 
detail-level {low | medium | high}
no detail-level
Context 
debug>service>id>ppp>packet
Description 

This command configures the PPP packet tracing detail level.

Parameters 
low, medium, high—
Enables debugging for the PPP packet tracing detail level.

dhcp-client

Syntax 
[no] dhcp-client
Context 
debug>service>id>ppp>packet
Description 

This command enables debugging for specific DHCP client packets.

discovery

Syntax 
discovery [padi] [pado] [padr] [pads] [padt]
no discovery
Context 
debug>service>id>ppp>packet
Description 

This command enables debugging for specific PPP discovery packets.

Parameters 
padi—
Enables debugging for PADI PPP discovery packets.
pado—
Enables debugging for PADO PPP discovery packets.
padr—
Enables debugging for PADR PPP discovery packets.
pads—
Enables debugging for PADS PPP discovery packets.
padt—
Enables debugging for PADT PPP discovery packets.

mode

Syntax 
mode {dropped-only | ingr-and-dropped | egr-ingr-and-dropped}
no mode
Context 
debug>service>id>ppp>packet
Description 

This command configures the PPP packet tracing mode.

Parameters 
dropped-only—
Enables debugging for dropped packets.
ingr-and-dropped—
Enables debugging for ingress and dropped packets.
egr-ingr-and-dropped—
Enables debugging for egress, ingress and dropped packets.

ppp

Syntax 
ppp [lcp] [pap] [chap] [ipcp]
no ppp
Context 
debug>service>id>ppp>packet
Description 

This command enables debugging for specific PPP packets

Parameters 
lcp—
Enables debugging for LCP packets.
pap—
Enables debugging for PAP packets.
chap—
Enables debugging for CHAP packets.
ipcp—
Enables debugging for IPCP packets.

sap

Syntax 
[no] sap sap-id
Context 
debug>service>id>ppp
Description 

This command debugs PPP packets for the specified SAP.

Parameters 
sap-id—
Enables debugging for the specified SAP ID.