22-15
Cisco CNS Network Registrar User’s Guide
OL-6240-02
Chapter 22 Advanced DHCP Server Properties
Configuring Virtual Private Networks and Subnet Allocation
Step 3 Specify the appropriate VPN identifier, either by VPN ID or VRF name. It is rarely both.
• If you use a VPN ID, set the vpn-id attribute value for the VPN. The value is usually in hexadecimal,
in the form oui:index, per IETF RFC 2685. It consists of a three-octet VPN Organizationally Unique
Identifier (OUI) that corresponds to the VPN owner or ISP, followed by a colon. It is then followed
by a four-octet index number of the VPN itself:
–
In the local and regional cluster Web UI—Add the VPN ID value to the List/Add VPNs page.
–
In the CLI—Set the vpn-id attribute. For example:
nrcmd> vpn blue set vpn-id=a1:3f6c
• If you use a VPN Routing and Forwarding (VRF) instance name, set the vrf-name attribute value for
the VPN. Cisco routers frequently use VRF names.
–
In the local and regional cluster Web UI—Add the VRF Name value to the List/Add VPNs page.
–
In the CLI—Set the vrf-name attribute. For example:
nrcmd> vpn blue set vrf-name=framus
Step 4 In the Web UI or CLI—Add a description for the VPN, if you wish.
Step 5 In the Web UI—Click Add VPN.
Step 6 Create a scope for the VPN. Keep the VPN name and scope name as similar as possible for identification
purposes:
• In the local cluster Web UI—Click DHCP, then Scopes. This opens the List/Add DHCP Scopes
page. Create a scope or edit an existing one. Under the Miscellaneous attributes, look for the vpn-id
attribute. Choose the VPN from the drop-down list.
• In the CLI—You can identify to which VPN the scope belongs in one of three ways:
–
Its VPN name, through the vpn attribute (which applies the VPN ID to the scope).
–
The VPN ID itself, through the vpn-id attribute.
–
The current session VPN name, by omitting the VPN or its ID on the command line.
You set the default VPN for the current session using session set current-vpn. You can then set the
usual address range and necessary option properties for the scope. For example:
nrcmd> scope blue-1921681 create 192.168.1.0 255.255.255.0 vpn=blue
Or:
nrcmd> scope blue-1921681 create 192.168.1.0 255.255.255.0 vpn-id=99
Or:
nrcmd> session set current-vpn=blue
nrcmd> scope blue-1921681 create 192.168.1.0 255.255.255.0
Then:
nrcmd> scope blue-1921681 addRange 192.168.1.101 192.168.1.200
nrcmd> scope-policy blue-1921681 setOption routers 192.168.1.1
Step 7 Reload the DHCP server after you create all the VPNs and scopes.