ADTRAN Internet-Based WAN Backup specs

The Internet as an Alternative	Internet-based WAN Backup Solutions using NetVanta

access-policy FR

interface ppp 1

description PPPoE Interface to ISP with Firewall, VPN to CENTRAL Gateway ip address negotiated

access-policy PoE crypto map HOSTviaPoE ppp authentication chap

username ISP_PPPoE_Srv password a

pppchap hostname ISP_Customer_PPPoE ppp chap password a

mtu 1492 no shutdown

cross-connect 2 eth 0/2 ppp 1

ip access-list extended Internet permit ip 10.1.1.240 0.0.0.15 any

ip access-list extended REMOTE_to_CENTRAL remark permits local lan subnet to central sub permit ip 10.1.1.240 0.0.0.15 172.31.4.0 0.0.0.255

!each interface has its own policy class to allow for

!discrete destination policy control if needed

ip policy-class FR! inbound on FR allows any session from CENTRAL allow reverse list REMOTE_to_CENTRAL

ip policy-class LOCALLAN! outbound on LAN allows any session to CENTRAL ! and outbound Internet access (with nat)

allow list REMOTE_to_CENTRAL

nat source list Internet interface ppp 1 overload policy PoE! Internet sessions are limited to egress ! interfaces with the PoE policy class

!
ip policy-class PoE	! inbound on PoE allows any session from CENTRAL
allow reverse list REMOTE_to_CENTRAL
!
!
Ip route 0.0.0.0 0.0.0.0 ppp 1	! Internet traffic
ip route 172.31.4.0 255.255.255.0 fr 1.1	! traffic to central over primary
ip route 172.31.4.0 255.255.255.0 ppp 1 3	! traffic to central over backup
!
end

61200890L1-29.4A

ADTRAN Internet-Based WAN Backup manual Inbound on PoE allows any session from Central