Now more and more enterprises in addition to establish a good LAN, but also in the establishment of their own remote access network. The establishment of a remote access network can meet the needs of staff travel and customer access to the corporate network.
Now there are roughly two ways to establish a remote access network: One is to enter the enterprise's own network by telephone dialing, and one is to access the network through VPN.
Our main introduction today is the first way to enter the enterprise local area network via telephone dialing. What are the benefits of dialing by phone?
first: As long as there is a telephone location can be connected with the company.
Second: Networking with the company is safe.
But there are some drawbacks to the way you use phone dialing.
First: The speed is slow, now many places provide broadband, if you also use dial-up, then the speed must be slower.
second: For those who need access to the company's network, they need to pay high telephone bills.
So what we're basically talking about today is using a way to solve the huge phone bills that people who need to get into the corporate network.
we all know that the way the phone is charged is paid by the Lord. That means you dial up to the company, so you need to pay the phone bill, but if the company is dialing into your computer, then of course it's the company that pays. So that's why we're going to explain the router callback.
the advantage of using router callback is that the company can manage the telephone charges used for data communication uniformly. The use of callback phone and user name to help set the security role.
General simultaneous access to the user is not too much, you can choose Cisco2610 Router and nm-8am module. CISCO2610 has a network slot and two WIC slots, with a 10M Ethernet port. NM-8AM is a network module that provides access to 8 of telephones.
How the
router callback works:
The user dials to the access server via modem, and the server authenticates the username and password. If the callback is not set, the username and password are correct, then the user enters the network and the user pays the phone bill. If the access server has a set callback, the server dials back the phone number that has been set up or asks the user to choose the callback.
below is the specific configuration:
-------------------------
Access#show Run
Building configuration ...
current configuration:1833 bytes
!version 12.2
No parser cache
No service single-slot-reload-enable
Service Timestamps Debug uptime
Service Timestamps log uptime
No service password-encryption
!hostname Access
! Access server with Name
No logging rate-limit
Enable password Cisco
! The password for the server
username Test callback-dialstring "" Password 0 test
! Username and password, the test account can select the phone number to dial back
username user callback-dialstring "1234567" Password 0 test
! Username user will be fixed back to dial 1234567 this phone number
IP Subnet-zero
!
!no IP dhcp-client network-discovery
chat-script mod ABORT ERROR ABORT BUSY "" at "
OK "ATDT T" TIMEOUT CONNECT C
! A router callback session script named "MoD"
chat-script Offhook "" "ATH1" OK
!
Interface ethernet0/0
IP address 10.1.84.3 255.255.255.0
Duplex Auto
Speed Auto
!
Interface Group-async1
IP unnumbered fastethernet0/0
Encapsulation PPP
IP tcp header-compression passive
Async Mode Interactive
peer default IP address pool default
PPP Callback Accept
! Requests that allow the customer to dial back
PPP Authentication
pap Group-range 33 40
!
IP Local Pool default 10.1.84.240 10.1.84.253
IP classless
IP route 0.0.0.0 0.0.0.0 10.1.84.254
!
Line con 0
Password Cisco
Login
Line 33 40
Script Modem-off-hook Offhook
Script Callback MoD
! Specifies a session script that emits the AT command to the modem, when callback occurs
Login Local
Modem InOut
Transport Preferred None
Transport Input All
Transport Output None
AutoSelect During-login
AutoSelect PPP
StopBits 1
FlowControl Hardware
line aux 0
Line vty 0 4
!
End
-----------------------------
settings for Windows clients
The implementation of the
callback is set by the client in addition to the access server.
for Windows2000 and Windows XP users, they create a new "Allow connections" in "Network Connections" in Control Panel.
creates a new user name and password that is the same as your dial-up account in the "Allow Incoming connections" user rights. In the user's properties, select Allow callback.
through these settings users can be callback to access their network