Got it
Huawei Enterprise Support Community
Community Forums Routing & Switching
Utilization of the same B...

Utilization of the same BNG with different username databases Highlighted

Latest reply: Mar 15, 2021 15:59:54 1112 29 22 0 2
View the author 1#

With the growth of the number of acquisitions and fusion on the Brazilian ISP market, is more frequent the ask to help to configure the BNG server to use two different users database at the moment of subscriber authentication, cause during the unification of the operations, is normal that different databases coexist.

To be possible to share the same BNG to different operations on fusion process, are necessary some tasks that I will describe here:

 

First Step:


        Configure a “radius-server group” pointing to the radius server of each of the ISP involved.

 

radius-server group ISP-1

 radius-server shared-key-cipher %^%#tE;&::5;b6Jdr4@.Y#FYlK\m,(E~MW-IOa2sKzF&%^%#

 radius-server authentication 192.168.0.1 1812 weight 0

 radius-server accounting 192.168.0.1 1813 weight 0

 radius-server source interface LoopBack0

 radius-server user-name original

#

radius-server group ISP-2

 radius-server shared-key-cipher %^%#tE;&::5;b6Jdr4@.Y#FYlK\m,(E~MW-IOa2sKzF&%^%#

 radius-server authentication 172.16.0.1 1812 weight 0

 radius-server accounting 172.16.0.1 1813 weight 0

 radius-server source interface LoopBack0

 radius-server user-name original

#

 

Second Step:


        Configure a domain to each of the ISP:

 

#

aaa

domain isp1.com.br

  authentication-scheme default

  accounting-scheme acct1

  radius-server group ISP-1

#

aaa

domain isp2.com.br

  authentication-scheme default

  accounting-scheme acct1

  radius-server group ISP-2

 

Third Step:


        In this step we can make the reference of the domain of two different forms:


        If the subscribers are divided into different VLANs, in the other words,  if the subscriber of each ISP are divided on your respective VLAN block, we can make the association of the domain directly on the interfaces:

 

interface Eth-Trunk1.300

user-vlan 300 qinq 1 4094

bas

 #

  access-type layer2-subscriber default-domain authentication isp1.com.br

 #

#      

interface Eth-Trunk1.400

user-vlan 400 qinq 1 4094

bas

 #

  access-type layer2-subscriber default-domain authentication isp2.com.br

 #

#     

 

        But, if it is not possible to separate the subscribers on VLANs, they need to use your username with the specific domain after the @.

 

user_xpto@isp1.com.br

user_wyz@isp2.com.br

 

       With these simple configurations is possible to share the same BNG server using different subscribers database without interferences.

 

     I hope I have helped the community. I ask you to comment on your experience with the subject and leave different tips or suggestions for use for what we discuss.


#MVE

#HuaweiEnterpriseCommunity

PPPoEBNGNE8000NE40

Like (22) Dislike (0) Favorite(2) Share Report
Previous: IP Address Resolution
Next: BGP network error in S6720
(0) (0)
11#
Zebra
Created Feb 2, 2021 04:33:50

Great. Thanks for sharing.
View more
  • x
  • convention:
(0) (0)
12#
lucian2003
Created Feb 2, 2021 17:30:17

Thanks, good job
View more
  • x
  • convention:
(0) (0)
13#
gabo.lr
Created Feb 2, 2021 18:24:46

Very good my friend!
View more
  • x
  • convention:
(0) (0)
14#
thisu
Created Feb 3, 2021 07:10:58

Thanks for sharing.
View more
  • x
  • convention:
(0) (0)
15#
hugu
Created Feb 3, 2021 07:42:47

Thanks for sharing
View more
  • x
  • convention:
(0) (0)
16#
Faridrami
Created Feb 3, 2021 16:13:37

thanks for sharing
View more
  • x
  • convention:
(0) (0)
17#
Mohamed619
Created Feb 8, 2021 05:49:27

Thanks for sharing
View more
  • x
  • convention:
(0) (0)
18#
thibay
Created Feb 8, 2021 14:21:07

Thanks for sharing
View more
  • x
  • convention:
(0) (0)
19#
bambopz
Created Feb 9, 2021 14:13:07

As always, very good post. Wish it was there few months ago :)
We have the same setup with 3 different ISP's working fine for about 5 months now. Two of them on one and same interface with usernames including domain name, and other on another interface working either with domain name included or not, for witch to work we must use the command  "user-name original" in the radius-server group setup, and setup the radius in such way also.
View more
  • x
  • convention:

LuizPuppin
LuizPuppin Created Feb 9, 2021 16:07:39 (0) (0)
 
(0) (0)
20#
anand.kata
Created Mar 15, 2021 15:59:54

Posted by Chenxintao at 2021-01-29 00:40 Good job! my friend!
Utilization of the same BNG with different username databases-3831035-1 Good information
View more
  • x
  • convention:
12
Back to list

Comment

Advanced
B Color Image Link Quote Code Smilies
You need to log in to comment to the post Login | Register
Comment

Notice: To protect the legitimate rights and interests of you, the community, and third parties, do not release content that may bring legal risks to all parties, including but are not limited to the following:
  • Politically sensitive content
  • Content concerning pornography, gambling, and drug abuse
  • Content that may disclose or infringe upon others ' commercial secrets, intellectual properties, including trade marks, copyrights, and patents, and personal privacy
Do not share your account and password with others. All operations performed using your account will be regarded as your own actions and all consequences arising therefrom will be borne by you. For details, see " User Agreement."

My Followers

Login and enjoy all the member benefits

Login
Huawei Website Support About Huawei Privacy User Agreement Terms of Use Cookies Cookie Settings
Huawei Enterprise Huawei Carrier Forum Training & Certification

Contact Us: e_online@huawei.com Copyright © 2022 Huawei Technologies Co., Ltd. All rights reserved.

APP

Block
Are you sure to block this user?
Users on your blacklist cannot comment on your post,cannot mention you, cannot send you private messages.
Reminder
Please bind your phone number to obtain invitation bonus.