Article about setting up I4B (ISDN) and ADSL via mpd from ports. (fwd)

Michael Reifenberger mike at Reifenberger.com
Tue Mar 2 06:16:18 PST 2004 

Hi,
I tried to get the attached article published on daemonnews.org
but either they are not responsive to everyone or I'm getting filterd...

So I'm sending the draft for those who would like a netgraph-only sollution for
their ADSL and ISDN connections.

Bye/2
---
Michael Reifenberger, Business Development Manager SAP-Basis, Plaut Consulting
Comp: Michael.Reifenberger at plaut.de | Priv: Michael at Reifenberger.com
      http://www.plaut.de           |       http://www.Reifenberger.com


---------- Forwarded message ----------
Date: Tue, 17 Feb 2004 21:14:31 +0100 (CET)
From: Michael Reifenberger <mike at reifenberger.com>
To: editors at daemonnews.org
Subject: Article about setting up I4B (ISDN) and ADSL via mpd from ports.
    (fwd)

Hi,
did someone receive the attached mail on article at daemonnews.org?

Bye/2
---
Michael Reifenberger, Business Development Manager SAP-Basis, Plaut Consulting
Comp: Michael.Reifenberger at plaut.de | Priv: Michael at Reifenberger.com
      http://www.plaut.de           |       http://www.Reifenberger.com


---------- Forwarded message ----------
Date: Sat, 7 Feb 2004 15:21:07 +0100 (CET)
From: Michael Reifenberger <mike at reifenberger.com>
To: article at daemonnews.org
Subject: Article about setting up I4B (ISDN) and ADSL via mpd from ports.

Hi,
attached is a Article about setting up a mixed ISDN/ADSL configuration
using mpd from ports.

Its a (unfortunately) seldom used setup and should be announced for an
wider publicity because of it robustnes and ease of use (once setup).


Bye/2
---
Michael Reifenberger, Business Development Manager SAP-Basis, Plaut Consulting
Comp: Michael.Reifenberger at plaut.de | Priv: Michael at Reifenberger.com
      http://www.plaut.de           |       http://www.Reifenberger.com
-------------- next part --------------
For those of us who have both ISDN and ADSL
there arises a problem how to manage these together.

In my case I wanted to use ADSL(T-Online) as the default internet connection
and ISDN for dialout into the company network and as a telefone
answering machine.
The whole network should be secured by ipf(4).

Most docs show how to use sppp(4) or userland ppp(8).
sppp(4) doesn't like ADSL and ppp(8) doesn't like I4B.
But I wanted one solution for both so the only 
remaining solution was to use mpd from ports on top
of the various netgraph(4) nodes.

Physical interfaces:
	vr0: primary internal interface (10.0.0.1)
	vr1: connected to the ADSL-modem
	
Netgraph nodes:
	ng0: public interface to the internet via PPPoE
	ng1: ppp connection to the company
	i4bing: raw ISDN B-channels for use with netgraph.

Kernel config:
...
#NG
options         NETGRAPH
options         NETGRAPH_BPF
options         NETGRAPH_ETHER
options         NETGRAPH_IFACE
options         NETGRAPH_ONE2MANY
options         NETGRAPH_PPP
options         NETGRAPH_PPPOE
options         NETGRAPH_RFC1490
options         NETGRAPH_SOCKET
options         NETGRAPH_TEE
options         NETGRAPH_TTY
options         NETGRAPH_VJC

#i4b
device          isic
options         ELSA_QS1PCI
device          "i4bq921"
device          "i4bq931"
device          "i4b"
device          "i4btrc"        4
device          "i4bctl"
device          "i4btel"        2
device          "i4bing"        2

#ipfilter
options         IPFILTER
options         IPFILTER_LOG
options         PFIL_HOOKS
options         ZERO_COPY_SOCKETS
...

mpd.conf:
...
default:
        set login XYZ
        load tonline
        load company

tonline:
        new -i ng0 PPPoE PPPoE
        set iface addrs 1.1.1.1 2.2.2.2
        set iface route default
        set iface disable on-demand
        set iface idle 0
        set iface up-script /usr/local/etc/mpd/mpd.up
        set bundle disable multilink
#Anschlusskennung: XXXXXXXXXXXX
#T-Online Nr.: YYYYYYYYYYYY
#Mitbenutzer Nr.: ZZZZ (usually 0001)
        set bundle authname XXXXXXXXXXXXYYYYYYYYYYYYZZZZ at t-online.de
        set link no acfcomp protocomp
        set link disable pap chap
        set link accept chap
        set link mtu 1460
        set ipcp yes vjcomp
        set ipcp ranges 0.0.0.0/0 0.0.0.0/0
        open iface

company:
        new -i ng1 plaut pl0
# no multilink yet
#       set bundle yes multilink
#       set bundle retry 10
#       set link fsm-timeout 10
# Configure the interface: dial on demand, default route, idle timeout.
        set iface addrs 194.XXX.XXX.XXX YYY.YYY.YYY.YYY
        set iface route XXX.XXX.XXX.0/24
        set iface enable on-demand
        set iface idle 900
# Configure the bundle account name.
        set bundle authname xxx
# Configure IP addressing -- we get both endpoint assignments from peer.
        set ipcp ranges 0.0.0.0/0 0.0.0.0/0
        set ipcp yes vjcomp
# Configure the (only) link. We expect to be authenticated by peer.
        set link disable chap pap
        set link accept chap pap
        set link yes acfcomp protocomp
# "Open" connection (but don't actually dial until there's demand)
        open iface
...

impd.links:
...
pl0:
        set link type ng
        set ng node i4bing0:
        set ng hook rawdata

PPPoE:
        set link type pppoe
        set pppoe iface vr1
        set pppoe service "whatever"
        set pppoe enable originate
        set pppoe disable incoming
...

mpd.secret:
...
XYZ	"FOO"
xxx	"BLA"
XXXXXXXXXXXXYYYYYYYYYYYYZZZZ at t-online.de	"FASEL"
...

rc.conf:
...
ifconfig_vr0="inet 10.0.0.1  netmask 255.255.255.0"
ifconfig_vr1="up"
gateway_enable="YES"
...

BTW: Be shure to start mpd right before ipfilter so that the interfaces ng0, ng1 are available.

More information about the freebsd-isdn mailing list