Cisco Systems OL-6240-02

22-15

Cisco CNS Network Registrar User’s Guide

OL-6240-02

Chapter22 Advanced DHCP Server Properties

Configuring Virtual Private Networks and Subnet Allocation

Step3 Specify the appropriate VPN identifier, either by VPN ID or VRF name. It is rarely both.

•If you use a VPN ID, set the vpn-id attribute value for the VPN. The value is usually in hexadecimal,

in the form oui:index, per IETF RFC 2685. It consists of a three-octet VPN Organizationally Unique

Identifier (OUI) that corresponds to the VPN owner or ISP, followed by a colon. It is then followed

by a four-octet index number of the VPN itself:

–

In the local and regional cluster Web UI—Add the VPN ID value to the List/Add VPNs page.

–

In the CLI—Set the vpn-id attribute. For example:

nrcmd> vpn blue set vpn-id=a1:3f6c

•If you use a VPN Routing and Forwarding (VRF) instance name, set the vrf-name attribute value for

the VPN. Cisco routers frequently use VRF names.

–

In the local and regional cluster Web UI—Add the VRF Name value to the List/Add VPNs page.

–

In the CLI—Set the vrf-name attribute. For example:

nrcmd> vpn blue set vrf-name=framus

Step4 In the Web UI or CLI—Add a description for the VPN, if you wish.

Step5 In the Web UI—Click Add VPN.

Step6 Create a scope for the VPN. Keep the VPN name and scope name as similar as possible for identification

purposes:

•In the local cluster Web UI—Click DHCP, then Scopes. This opens the List/Add DHCP Scopes

page. Create a scope or edit an existing one. Under the Miscellaneous attributes, look for the vpn-id

attribute. Choose the VPN from the drop-down list.

•In the CLI—You can identify to which VPN the scope belongs in one of three ways:

–

Its VPN name, through the vpn attribute (which applies the VPN ID to the scope).

–

The VPN ID itself, through the vpn-id attribute.

–

The current session VPN name, by omitting the VPN or its ID on the command line.

You set the default VPN for the current session using session set current-vpn. You can then set the

usual address range and necessary option properties for the scope. For example:

nrcmd> scope blue-1921681 create 192.168.1.0 255.255.255.0 vpn=blue

Or:

nrcmd> scope blue-1921681 create 192.168.1.0 255.255.255.0 vpn-id=99

Or:

nrcmd> session set current-vpn=blue

nrcmd> scope blue-1921681 create 192.168.1.0 255.255.255.0

Then:

nrcmd> scope blue-1921681 addRange 192.168.1.101 192.168.1.200

nrcmd> scope-policy blue-1921681 setOption routers 192.168.1.1

Step7 Reload the DHCP server after you create all the VPNs and scopes.