PIX 501 vpdn debug help

Discussion in 'Cisco' started by Brian, Dec 12, 2006.

  1. Brian

    Brian Guest

    Good day!

    I have a pix 501 that works like a charm with my pppoe (pap auth). I
    have a second pix 501 that worked up until a couple days ago. Now it
    won't authenticate properly with my isp. I know the username and
    password are entered correctly. I know the account functions because I
    can connect with my old dlink router using pppoe/pap.

    Here's the debug output (brace yourself!)

    ----------------
    ....
    Ver:1 Type:1 Code:09=PADI Sess:0 Len:12
    Type:0101:SVCNAME-Service Name Len:0
    Type:0103:HOSTUNIQ-Host Unique Tag Len:4 00000002

    PPPoE:(Rcv) Dest:000f.f79f.ad1c Src:00d0.ba04.e302
    Type:0x8863=PPPoE-Discovery

    Ver:1 Type:1 Code:07=PADO Sess:0 Len:49
    Type:0101:SVCNAME-Service Name Len:0
    Type:0103:HOSTUNIQ-Host Unique Tag Len:4 00000002
    Type:0102:ACNAME-AC Name Len:13 RICH-DSL-RTR2

    Type:0104:ACCOOKIE-AC Cookie Len:16 FA438FB6 55065A7F 63E91FE2
    0564EE68


    PPPoE: PADO
    send_padr:(Snd) Dest:00d0.ba04.e302 Src:000f.f79f.ad1c
    Type:0x8863=PPPoE-Discovery

    Ver:1 Type:1 Code:19=PADR Sess:0 Len:49
    Type:0101:SVCNAME-Service Name Len:0
    Type:0103:HOSTUNIQ-Host Unique Tag Len:4 00000002
    Type:0102:ACNAME-AC Name Len:13 RICH-DSL-RTR2

    Type:0104:ACCOOKIE-AC Cookie Len:16 FA438FB6 55065A7F 63E91FE2
    0564EE68


    PPPoE:(Rcv) Dest:000f.f79f.ad1c Src:00d0.ba04.e302
    Type:0x8863=PPPoE-Discovery

    Ver:1 Type:1 Code:65=PADS Sess:31677 Len:49
    Type:0101:SVCNAME-Service Name Len:0
    Type:0103:HOSTUNIQ-Host Unique Tag Len:4 00000002
    Type:0102:ACNAME-AC Name Len:13 RICH-DSL-RTR2

    Type:0104:ACCOOKIE-AC Cookie Len:16 FA438FB6 55065A7F 63E91FE2
    0564EE68


    PPPoE: PADS
    IN PADS from PPPoE tunnel
    PPPoE: Opening PPP link and starting negotiations.
    PPP virtual access open, ifc = 0

    Xmit Link Control Protocol pkt, Action code is: Config Request, len is:
    6
    Pkt dump: 050676cbffae
    LCP Option: MAGIC_NUMBER, len: 6, data: 76cbffae

    L2X: l2x store session: tunnel id 0, session id 31677, hash_ix=3005
    Rcvd Link Control Protocol pkt, Action code is: Config Request, len is:
    14
    Pkt dump: 010405d40304c0230506f77c99d6
    LCP Option: Max_Rcv_Units, len: 4, data: 05d4
    LCP Option: AUTHENTICATION_TYPES, len: 4, data: c023
    LCP Option: MAGIC_NUMBER, len: 6, data: f77c99d6

    Xmit Link Control Protocol pkt, Action code is: Config ACK, len is: 14
    Pkt dump: 010405d40304c0230506f77c99d6
    LCP Option: Max_Rcv_Units, len: 4, data: 05d4
    LCP Option: AUTHENTICATION_TYPES, len: 4, data: c023
    LCP Option: MAGIC_NUMBER, len: 6, data: f77c99d6

    Rcvd Link Control Protocol pkt, Action code is: Config ACK, len is: 6
    Pkt dump: 050676cbffae
    LCP Option: MAGIC_NUMBER, len: 6, data: 76cbffae

    Xmit Link Control Protocol pkt, Action code is: Echo Request, len is: 4
    Pkt dump: 76cbffae

    PPP pap recv authen nak: 41757468656e7469636174696f6e206661696c6564
    PPP PAP authentication failed
    PPPoE:(Rcv) Dest:000f.f79f.ad1c Src:00d0.ba04.e302
    Type:0x8863=PPPoE-Discovery

    Ver:1 Type:1 Code:A7=PADT Sess:31677 Len:0

    PPPoE: PADT
    PPP va close, device = 1

    Xmit Link Control Protocol pkt, Action code is: Termination Request,
    len is: 0

    PPPoE: Shutting down client session
    ---------------------------


    after which sh vpdn will output:

    Tunnel id 0
    time since change 255 secs
    Remote MAC Address 00:D0:BA:04:E3:02
    65 packets sent, 39 received, 728 bytes sent, 1794 received
    termination info:
    Peer Terminated
    Authentication failed
    LCP down
    Remote MAC is 00:D0:BA:04:E3:02
    Session state is SESSION_SHUTDOWN
    Time since event change 1393 secs, interface outside
    65 packets sent, 0 received, 728 bytes sent, 0 received
    termination info:
    Peer Terminated
    Authentication failed
    LCP down
    ----------------------

    Any help would be appreciated!!
     
    Brian, Dec 12, 2006
    #1
    1. Advertising

Want to reply to this thread or ask your own question?

It takes just 2 minutes to sign up (and it's free!). Just click the sign up button to choose a username and then you can ask your own questions on the forum.
Similar Threads
  1. R. Bressers

    [pix] vpdn enable dmz

    R. Bressers, Jun 10, 2004, in forum: Cisco
    Replies:
    1
    Views:
    647
    Walter Roberson
    Jun 10, 2004
  2. John
    Replies:
    0
    Views:
    474
  3. Andre
    Replies:
    7
    Views:
    808
    Andre
    Feb 20, 2005
  4. Nibly
    Replies:
    6
    Views:
    16,096
    Walter Roberson
    Feb 22, 2005
  5. waqas001

    PIX 501 [ERR]vpdn enable outside

    waqas001, Apr 22, 2008, in forum: General Computer Support
    Replies:
    0
    Views:
    1,287
    waqas001
    Apr 22, 2008
Loading...

Share This Page