Got it
Huawei Enterprise Support Community
Community Forums Routing & Switching
Simultaneous BNG connecti...

Simultaneous BNG connection control

Created: Oct 22, 2020 01:01:29Latest reply: Oct 23, 2020 06:28:39 572 9 0 0 0
  Rewarded HiCoins: 1 (problem resolved)
View the author 1#

Hi


Does anyone here in the community know how to control the use of simultaneous PPPoE connections by the NE40?


Like (0) Dislike (0) Favorite(0) Share Report
Previous: IPSEC_INBOUND_SA_MISS
Next: peer ebgp-max-hop
Featured Answers

Recommended answer

(0) (0)
chenhui
Admin Created Oct 22, 2020 11:28:14

Hi Getulio,
No, it's not supported to limit the connections between the PPPoE users and the server. The router only forward the traffic between the server and PPPoE user, and the connections are established between on the server and PPPoE user, rather than router and PPPoE user.
View more
  • x
  • convention:

Getulio
Getulio Created Oct 22, 2020 22:44:47 (0) (0)
I still can't express what I really need, in fact I don't need to limit the number of users per interface, I need to limit is the udp / tcp connections that each user can use.  
chenhui
chenhui Reply Getulio  Created Oct 23, 2020 06:18:37 (0) (0)
Exactly. As I described, the PPPoE user get the IP address and authenticated on the BRAS device which is NE40E. Then, when the dialer surfing on the internet, the TCP and UDP connections are established between the dialer and the web server, rather than the BRAS device, which means, the BRAS device doesn't recognize the TCP or UDP connections that the traffic it forwards belongs to, neither the total number of the connections.  
All Answers
(0) (0)
2#
jason_hu
jason_hu Admin Created Oct 22, 2020 01:03:34

Hello,
It's nice to meet you in the community.
We're working on your problem. Please be patient.
View more
  • x
  • convention:
(0) (0)
3#
LuizPuppin
LuizPuppin HCIE Author Created Oct 22, 2020 07:50:39

You can use this command on the system-view.

But normally this control is realized on Radius Server


pppoe-server same-user forbid

View more
  • x
  • convention:

Getulio
Getulio Created Oct 22, 2020 08:24:06 (0) (0)
Dear, I think I expressed it wrongly, what I meant was the connections established for the simultaneous use of each pppoe. Example a user is using 10,000 connections and I need him to use a maximum of 5,000, you know?  
(0) (0)
4#
LuizPuppin
LuizPuppin HCIE Author Created Oct 22, 2020 10:04:00

You can use this to limit connections on each interface:

# Set the maximum number of access users for each VLAN on the BAS interface GE 0/1/1.2 to 100.

<HUAWEI> system-view
[~HUAWEI] interface GigabitEthernet 0/1/1.2
[~HUAWEI-GigabitEthernet0/1/1.2] commit
[~HUAWEI-GigabitEthernet0/1/1.2] bas
[~HUAWEI-GigabitEthernet0/1/1.2-bas] access-type layer2-subscriber
[~HUAWEI-GigabitEthernet0/1/1.2-bas] access-limit 100
View more
  • x
  • convention:

Getulio
Getulio Created Oct 22, 2020 22:44:26 (0) (0)
Dear, Luiz, thank you for your attention,

I still can't express what I really need, in fact I don't need to limit the number of users per interface, I need to limit is the udp / tcp connections that each user can use.  
(0) (0)
5#
chenhui
chenhui Admin Created Oct 22, 2020 11:28:14

Hi Getulio,
No, it's not supported to limit the connections between the PPPoE users and the server. The router only forward the traffic between the server and PPPoE user, and the connections are established between on the server and PPPoE user, rather than router and PPPoE user.
View more
  • x
  • convention:

Getulio
Getulio Created Oct 22, 2020 22:44:47 (0) (0)
I still can't express what I really need, in fact I don't need to limit the number of users per interface, I need to limit is the udp / tcp connections that each user can use.  
chenhui
chenhui Reply Getulio  Created Oct 23, 2020 06:18:37 (0) (0)
Exactly. As I described, the PPPoE user get the IP address and authenticated on the BRAS device which is NE40E. Then, when the dialer surfing on the internet, the TCP and UDP connections are established between the dialer and the web server, rather than the BRAS device, which means, the BRAS device doesn't recognize the TCP or UDP connections that the traffic it forwards belongs to, neither the total number of the connections.  
(0) (0)
6#
chenhui
chenhui Admin Created Oct 23, 2020 06:28:39

Hi Getulio, 

The picture below might help you understand why the NE40E cannot limit the number of TCP/UDP connections.

block TCP/UDP

NE40E cannot record the TCP/UDP connections as the firewall does, and it only supports to block the specified connections.

View more
  • x
  • convention:
Back to list

Comment

Advanced
B Color Image Link Quote Code Smilies
You need to log in to comment to the post Login | Register
Comment

Notice: To protect the legitimate rights and interests of you, the community, and third parties, do not release content that may bring legal risks to all parties, including but are not limited to the following:
  • Politically sensitive content
  • Content concerning pornography, gambling, and drug abuse
  • Content that may disclose or infringe upon others ' commercial secrets, intellectual properties, including trade marks, copyrights, and patents, and personal privacy
Do not share your account and password with others. All operations performed using your account will be regarded as your own actions and all consequences arising therefrom will be borne by you. For details, see " User Agreement."

My Followers

Login and enjoy all the member benefits

Login
Huawei Website Support About Huawei Privacy User Agreement Terms of Use Cookies Cookie Settings
Huawei Enterprise Huawei Carrier Forum Training & Certification

Contact Us: e_online@huawei.com Copyright © 2022 Huawei Technologies Co., Ltd. All rights reserved.

APP

Block
Are you sure to block this user?
Users on your blacklist cannot comment on your post,cannot mention you, cannot send you private messages.
Reminder
Please bind your phone number to obtain invitation bonus.