On 30/04/2010, at 10:19 AM, Philip D'Ath wrote:
You are correct, LCP. However the Cisco CPE is *not* offering to do CHAP.
The Cisco CPE should not offer any authentication, it should only be sending authentication options in CONFACK or CONFNAK messages (unless you want bidirectional auth, which I assume you don't).
100% sure that CONFACK CHAP is not being sent.
Respectfully, I don't believe this, I'd have to see logs.
It only started happening about three months ago. Only on Telecom Xtra connections. And only in some regions (I would hazard a guess to say it is only happening in the South Island, but would need to look at those who have requested help).
I do not believe there is a bug in the Cisco implementation with regard to this. It is doing exactly what it is meant to be doing.
What I might do, for your own interest, is send a debug output off-list next time I run into one.
I would suggest that you also send such a debug to Telecom if there is a problem so that they can fix it. Feel free to send it to me if you want a second opinion first though! -- Nathan Ward