ADTRAN NetVanta Internet-Based WAN Backup, Configuration Manual, Page: 8 / 12

The Internet as an Alternative Internet-based WAN Backup Solutions using NetVanta
8 Copyright © 2005 ADTRAN, Inc. 61200890L1-29.4A
access-policy FR
!
interface ppp 1
description PPPoE Interface to ISP with Firewall, VPN to CENTRAL Gateway
ip address negotiated
access-policy PoE
crypto map HOSTviaPoE
ppp authentication chap
username ISP_PPPoE_Srv password a
ppp chap hostname ISP_Customer_PPPoE
ppp chap password a
mtu 1492
no shutdown
cross-connect 2 eth 0/2 ppp 1
!
!
ip access-list extended Internet
permit ip 10.1.1.240 0.0.0.15 any
!
ip access-list extended REMOTE_to_CENTRAL
remark permits local lan subnet to central sub
permit ip 10.1.1.240 0.0.0.15 172.31.4.0 0.0.0.255
!
! each interface has its own policy class to allow for
! discrete destination policy control if needed
!
ip policy-class FR
! inbound on FR allows any session from CENTRAL
allow reverse list REMOTE_to_CENTRAL
!
ip policy-class LOCALLAN
! outbound on LAN allows any session to CENTRAL
! and outbound Internet access (with nat)
allow list REMOTE_to_CENTRAL
nat source list Internet interface ppp 1 overload policy PoE
! Internet sessions are limited to egress
! interfaces with the PoE policy class
!
ip policy-class PoE
! inbound on PoE allows any session from CENTRAL
allow reverse list REMOTE_to_CENTRAL
!
!
Ip route 0.0.0.0 0.0.0.0 ppp 1
! Internet traffic
ip route 172.31.4.0 255.255.255.0 fr 1.1 ! traffic to central over primary
ip route 172.31.4.0 255.255.255.0 ppp 1 3 ! traffic to central over backup
!
end