Support User Manuals

Cisco Systems OL-6240-02 Server User Manual

Open as PDF

of 20

22-15

Cisco CNS Network Registrar User’s Guide

OL-6240-02

Chapter 22 Advanced DHCP Server Properties

Configuring Virtual Private Networks and Subnet Allocation

Step 3 Specify the appropriate VPN identifier, either by VPN ID or VRF name. It is rarely both.

• If you use a VPN ID, set the vpn-id attribute value for the VPN. The value is usually in hexadecimal,

in the form oui:index, per IETF RFC 2685. It consists of a three-octet VPN Organizationally Unique

Identifier (OUI) that corresponds to the VPN owner or ISP, followed by a colon. It is then followed

by a four-octet index number of the VPN itself:

–

In the local and regional cluster Web UI—Add the VPN ID value to the List/Add VPNs page.

–

In the CLI—Set the vpn-id attribute. For example:

nrcmd> vpn blue set vpn-id=a1:3f6c

• If you use a VPN Routing and Forwarding (VRF) instance name, set the vrf-name attribute value for

the VPN. Cisco routers frequently use VRF names.

–

In the local and regional cluster Web UI—Add the VRF Name value to the List/Add VPNs page.

–

In the CLI—Set the vrf-name attribute. For example:

nrcmd> vpn blue set vrf-name=framus

Step 4 In the Web UI or CLI—Add a description for the VPN, if you wish.

Step 5 In the Web UI—Click Add VPN.

Step 6 Create a scope for the VPN. Keep the VPN name and scope name as similar as possible for identification

purposes:

• In the local cluster Web UI—Click DHCP, then Scopes. This opens the List/Add DHCP Scopes

page. Create a scope or edit an existing one. Under the Miscellaneous attributes, look for the vpn-id

attribute. Choose the VPN from the drop-down list.

• In the CLI—You can identify to which VPN the scope belongs in one of three ways:

–

Its VPN name, through the vpn attribute (which applies the VPN ID to the scope).

–

The VPN ID itself, through the vpn-id attribute.

–

The current session VPN name, by omitting the VPN or its ID on the command line.

You set the default VPN for the current session using session set current-vpn. You can then set the

usual address range and necessary option properties for the scope. For example:

nrcmd> scope blue-1921681 create 192.168.1.0 255.255.255.0 vpn=blue

Or:

nrcmd> scope blue-1921681 create 192.168.1.0 255.255.255.0 vpn-id=99

Or:

nrcmd> session set current-vpn=blue

nrcmd> scope blue-1921681 create 192.168.1.0 255.255.255.0

Then:

nrcmd> scope blue-1921681 addRange 192.168.1.101 192.168.1.200

nrcmd> scope-policy blue-1921681 setOption routers 192.168.1.1

Step 7 Reload the DHCP server after you create all the VPNs and scopes.

previous next