Login | Register For Free | Help
Search for: (Advanced)

Mailing List Archive: Cisco: NSP

LNS Error %VPDN-3-NORESOURCE:

  

 
Cisco nsp RSS feed   Index | Next | Previous | View Threaded


ar_djp at yahoo

Jun 14, 2012, 12:14 AM

Post #1 of 13 (1293 views)
Permalink
LNS Error %VPDN-3-NORESOURCE:
Hi.

I am working on a new LNS on our network.
I am getting an error below....

I have the following config:
vpdn-group 1
 accept-dialin
  protocol l2tp
  virtual-template 1
 terminate-from hostname LAC
 source-ip  x.x.x.x
 local name LNS1
 lcp renegotiation on-mismatch
 l2tp tunnel password test
 l2tp tunnel timeout no-session 600
 ip tos reflect




That same config is working in my other LNS.
Only difference is IOS.
I am using 7200p-advipservicesk9-mz.151-4.M4.bin in the new LNS.
while using c7200-js-mz.122-31.SB16.bin in the old LNS.


%VPDN-3-NORESOURCE: L2TP LNS LNS2 no resources for user test [at] xyz; Result 4, Error 4, SSS Manager disconnected session
Jun 14 07:05:14.711: ppp55 CHAP: O FAILURE id 1 len 26 msg is "Authentication failure"


Need help badly.


Thanks
_______________________________________________
cisco-nsp mailing list cisco-nsp [at] puck
https://puck.nether.net/mailman/listinfo/cisco-nsp
archive at http://puck.nether.net/pipermail/cisco-nsp/


ar_djp at yahoo

Jun 14, 2012, 4:48 AM

Post #2 of 13 (1262 views)
Permalink
Re: LNS Error %VPDN-3-NORESOURCE: [In reply to]
I used cisco output interpreter and got the following explanation below.
But I dont have any memory/cpu problem on the router.
Router has no load actually. No subscribers connected yet and is designed to handle l2tp clients only.

Any inputs?
can this be a IOS 15.1 issue?




%VPDN-3-NORESOURCE (x1): [chars] [chars] [chars] no resources for user [chars][chars][chars] Explanation: The NAS/LAC or HGW/LNS is out of resources to forward a VPDN user.
This error may be caused by low system memory, or high current CPU utilization. Recommended Action: . Enter the show memory command and check the available memory
in processor and I/O memories. If there is not enough memory, reduce other system
activity to ease memory demands. If conditions warrant, upgrade to a larger memory
configuration. If the error recurs, enter the show processes command and check
the current CPU utilization. If the utilization is maximum, reduce system activity
to ease processing demands. If the error recurs, copy the error message exactly
as it appears on the console or in the system log. Enter the show memory and show processes commands. Contact your Cisco technical support representative, and provide
the representative with the gathered information.


________________________________
From: ar <ar_djp [at] yahoo>
To: cisco-nsp <cisco-nsp [at] puck>
Sent: Thursday, June 14, 2012 3:14 PM
Subject: [c-nsp] LNS Error %VPDN-3-NORESOURCE:

Hi.

I am working on a new LNS on our network.
I am getting an error below....

I have the following config:
vpdn-group 1
 accept-dialin
  protocol l2tp
  virtual-template 1
 terminate-from hostname LAC
 source-ip  x.x.x.x
 local name LNS1
 lcp renegotiation on-mismatch
 l2tp tunnel password test
 l2tp tunnel timeout no-session 600
 ip tos reflect




That same config is working in my other LNS.
Only difference is IOS.
I am using 7200p-advipservicesk9-mz.151-4.M4.bin in the new LNS.
while using c7200-js-mz.122-31.SB16.bin in the old LNS.


%VPDN-3-NORESOURCE: L2TP LNS LNS2 no resources for user test [at] xyz; Result 4, Error 4, SSS Manager disconnected session
Jun 14 07:05:14.711: ppp55 CHAP: O FAILURE id 1 len 26 msg is "Authentication failure"


Need help badly.


Thanks
_______________________________________________
cisco-nsp mailing list  cisco-nsp [at] puck
https://puck.nether.net/mailman/listinfo/cisco-nsp
archive at http://puck.nether.net/pipermail/cisco-nsp/
_______________________________________________
cisco-nsp mailing list cisco-nsp [at] puck
https://puck.nether.net/mailman/listinfo/cisco-nsp
archive at http://puck.nether.net/pipermail/cisco-nsp/


timoid at timoid

Jun 14, 2012, 4:56 AM

Post #3 of 13 (1245 views)
Permalink
Re: LNS Error %VPDN-3-NORESOURCE: [In reply to]
> I used cisco output interpreter and got the following explanation below.
> But I dont have any memory/cpu problem on the router.
> Router has no load actually. No subscribers connected yet and is designed
to
> handle l2tp clients only.
>

What is the output of:
show processes memory | i Free


_______________________________________________
cisco-nsp mailing list cisco-nsp [at] puck
https://puck.nether.net/mailman/listinfo/cisco-nsp
archive at http://puck.nether.net/pipermail/cisco-nsp/


ar_djp at yahoo

Jun 14, 2012, 5:25 AM

Post #4 of 13 (1248 views)
Permalink
Re: LNS Error %VPDN-3-NORESOURCE: [In reply to]
#sho processes memory | i Free
Processor Pool Total: 1872053612 Used:   58648856 Free: 1813404756
      I/O Pool Total:   67108864 Used:    4561056 Free:   62547808
Transient Pool Total:   16777216 Used:     348596 Free:   16428620
 PID TTY  Allocated      Freed    Holding    Getbufs    Retbufs Process



________________________________
From: Tim Warnock <timoid [at] timoid>
To: 'ar' <ar_djp [at] yahoo>; 'cisco-nsp' <cisco-nsp [at] puck>
Sent: Thursday, June 14, 2012 7:56 PM
Subject: RE: [c-nsp] LNS Error %VPDN-3-NORESOURCE:

> I used cisco output interpreter and got the following explanation below.
> But I dont have any memory/cpu problem on the router.
> Router has no load actually. No subscribers connected yet and is designed
to
> handle l2tp clients only.
>

What is the output of:
show processes memory | i Free
_______________________________________________
cisco-nsp mailing list cisco-nsp [at] puck
https://puck.nether.net/mailman/listinfo/cisco-nsp
archive at http://puck.nether.net/pipermail/cisco-nsp/


timoid at timoid

Jun 14, 2012, 5:41 AM

Post #5 of 13 (1250 views)
Permalink
Re: LNS Error %VPDN-3-NORESOURCE: [In reply to]
> -----Original Message-----
> From: ar [mailto:ar_djp [at] yahoo]
> Sent: Thursday, 14 June 2012 10:26 PM
> To: Tim Warnock; 'cisco-nsp'
> Subject: Re: [c-nsp] LNS Error %VPDN-3-NORESOURCE:
>
> #sho processes memory | i Free
> Processor Pool Total: 1872053612 Used: 58648856 Free: 1813404756
> I/O Pool Total: 67108864 Used: 4561056 Free: 62547808
> Transient Pool Total: 16777216 Used: 348596 Free: 16428620
> PID TTY Allocated Freed Holding Getbufs Retbufs Process
>

Can you try c7200p-advipservicesk9-mz.122-33.SRE6.bin if you are entitled to
it?

Smells like a bug to me.

_______________________________________________
cisco-nsp mailing list cisco-nsp [at] puck
https://puck.nether.net/mailman/listinfo/cisco-nsp
archive at http://puck.nether.net/pipermail/cisco-nsp/


ar_djp at yahoo

Jun 14, 2012, 5:55 AM

Post #6 of 13 (1259 views)
Permalink
Re: LNS Error %VPDN-3-NORESOURCE: [In reply to]
Yup. I am actually downloading SRE6 as of the moment....
I'll load this tom and will send an update.

Thank you Tim.




________________________________
From: Tim Warnock <timoid [at] timoid>
To: 'ar' <ar_djp [at] yahoo>
Cc: 'cisco-nsp' <cisco-nsp [at] puck>
Sent: Thursday, June 14, 2012 8:41 PM
Subject: RE: [c-nsp] LNS Error %VPDN-3-NORESOURCE:

> -----Original Message-----
> From: ar [mailto:ar_djp [at] yahoo]
> Sent: Thursday, 14 June 2012 10:26 PM
> To: Tim Warnock; 'cisco-nsp'
> Subject: Re: [c-nsp] LNS Error %VPDN-3-NORESOURCE:
>
> #sho processes memory | i Free
> Processor Pool Total: 1872053612 Used:  58648856 Free: 1813404756
>      I/O Pool Total:  67108864 Used:    4561056 Free:  62547808
> Transient Pool Total:  16777216 Used:    348596 Free:  16428620
>  PID TTY  Allocated      Freed    Holding    Getbufs    Retbufs Process
>

Can you try c7200p-advipservicesk9-mz.122-33.SRE6.bin if you are entitled to
it?

Smells like a bug to me.
_______________________________________________
cisco-nsp mailing list cisco-nsp [at] puck
https://puck.nether.net/mailman/listinfo/cisco-nsp
archive at http://puck.nether.net/pipermail/cisco-nsp/


ar_djp at yahoo

Jun 14, 2012, 4:13 PM

Post #7 of 13 (1243 views)
Permalink
Re: LNS Error %VPDN-3-NORESOURCE: [In reply to]
Hi.

I tried SRE6 already.
I got the same error.
Unfortunately I dont have any TAC support for this box.

Could this be a possible NPE-G2 problem?


#sho ver
Cisco IOS Software, 7200 Software (C7200P-ADVIPSERVICESK9-M), Version 12.2(33)SRE6, RELEASE SOFTWARE (fc1)


Jun 14 23:10:54.455: ppp76 PPP: Sent CHAP LOGIN Request
Jun 14 23:10:54.455: ppp76 PPP: Received LOGIN Response PASS
Jun 14 23:10:54.459: %VPDN-3-NORESOURCE: L2TP LNS LNS1 no resources for user test [at] xyz; Result 4, Error 4, SSS Manager disconnected session
Jun 14 23:10:54.459: ppp76 CHAP: O FAILURE id 1 len 26 msg is "Authentication failure"






________________________________
From: Tim Warnock <timoid [at] timoid>
To: 'ar' <ar_djp [at] yahoo>
Cc: 'cisco-nsp' <cisco-nsp [at] puck>
Sent: Thursday, June 14, 2012 10:41 PM
Subject: RE: [c-nsp] LNS Error %VPDN-3-NORESOURCE:

> -----Original Message-----
> From: ar [mailto:ar_djp [at] yahoo]
> Sent: Thursday, 14 June 2012 10:26 PM
> To: Tim Warnock; 'cisco-nsp'
> Subject: Re: [c-nsp] LNS Error %VPDN-3-NORESOURCE:
>
> #sho processes memory | i Free
> Processor Pool Total: 1872053612 Used:  58648856 Free: 1813404756
>      I/O Pool Total:  67108864 Used:    4561056 Free:  62547808
> Transient Pool Total:  16777216 Used:    348596 Free:  16428620
>  PID TTY  Allocated      Freed    Holding    Getbufs    Retbufs Process
>

Can you try c7200p-advipservicesk9-mz.122-33.SRE6.bin if you are entitled to
it?

Smells like a bug to me.
_______________________________________________
cisco-nsp mailing list cisco-nsp [at] puck
https://puck.nether.net/mailman/listinfo/cisco-nsp
archive at http://puck.nether.net/pipermail/cisco-nsp/


oboehmer at cisco

Jun 15, 2012, 4:19 AM

Post #8 of 13 (1226 views)
Permalink
Re: LNS Error %VPDN-3-NORESOURCE: [In reply to]
> I tried SRE6 already.
> I got the same error.
> Unfortunately I dont have any TAC support for this box.
>
> Could this be a possible NPE-G2 problem?
>
>
> #sho ver
> Cisco IOS Software, 7200 Software (C7200P-ADVIPSERVICESK9-M), Version
> 12.2(33)SRE6, RELEASE SOFTWARE (fc1)
>
>
> Jun 14 23:10:54.455: ppp76 PPP: Sent CHAP LOGIN Request
> Jun 14 23:10:54.455: ppp76 PPP: Received LOGIN Response PASS
> Jun 14 23:10:54.459: %VPDN-3-NORESOURCE: L2TP LNS LNS1 no resources
for user
> test [at] xyz; Result 4, Error 4, SSS Manager disconnected session
> Jun 14 23:10:54.459: ppp76 CHAP: O FAILURE id 1 len 26 msg is
> "Authentication failure"

don't think this is related to the platform, some debugs are in order to
find out what's happening (my l2tp/vpdn skills are a bit rusty, though
;-)

debug radius
debug aaa author
debug aaa per-user
debug vpdn event
debug vpdn error
debug vpdn l2x-ev
debug vpdn l2x-er
debug vpdn sss err
debug vpdn sss ev

can you share the full configs of both devices offline/unicast?

oli



_______________________________________________
cisco-nsp mailing list cisco-nsp [at] puck
https://puck.nether.net/mailman/listinfo/cisco-nsp
archive at http://puck.nether.net/pipermail/cisco-nsp/


ar_djp at yahoo

Jun 15, 2012, 6:32 AM

Post #9 of 13 (1247 views)
Permalink
Re: LNS Error %VPDN-3-NORESOURCE: [In reply to]
Hi.

Thanks for the reply.

What I noticed today was,

I tried to authenticate one vrf-enabled l2tp session and one global (no-vrf).
The one with VRF can't authenticate. Giving me the error of "LNS no resources for user..."
But the one with no-vrf was able to authenticate successfully.

My tcpdump on the radius server says Authentication Request, and Authentication Accept.
Router debug also shows CHAP login response is PASS.

I tried also using my other LNS (NPE-G1) and any vrf-enabled session is successful.
Both VRF-enabled and GLobal L2tp session terminates on the same vpdn-group.

I have similar config on both LNS routers.



Here's my LNS config:

vpdn-group 1
 accept-dialin
  protocol l2tp
  virtual-template 1
 terminate-from hostname LNS1
 source-ip x.x.x.x
 local name ABC
 lcp renegotiation on-mismatch
 l2tp tunnel password 7 09123456
 l2tp tunnel timeout no-session 600
 ip tos reflect




interface Virtual-Template1
  mtu 1462
 ip unnumbered Loopback0
 ip tcp adjust-mss 1422
 peer default ip address pool LNSPool
 keepalive 60
 ppp authentication chap radius-ppp



Here's the debug pp/aaa/vpdn output:

Jun 15 09:34:07.823: VPDN Received L2TUN socket message Incoming
Jun 15 09:34:07.823: AAA/BIND(000001E7): Bind i/f 
Jun 15 09:34:07.823: VPDN uid:393 L2TUN socket session accept requested
Jun 15 09:34:07.823: VPDN uid:393 Setting up dataplane for L2-L2, no idb
Jun 15 09:34:07.827: VPDN Received L2TUN socket message Connected
Jun 15 09:34:07.827: AAA/BIND(000001E7): Bind i/f Virtual-Template1
Jun 15 09:34:07.827: VPDN uid:393 VPDN session up
Jun 15 09:34:07.831: AAA/AUTHEN/PPP (000001E7): Pick method list 'radius-ppp'
Jun 15 09:34:07.831: ppp393 PPP: Sent CHAP LOGIN Request
Jun 15 09:34:07.831: ppp393 PPP: Received LOGIN Response PASS
Jun 15 09:34:07.835: VPDN uid:393 disconnect (L2X) IETF: 9/nas-error Ascend: 62/VPDN No Resources
Jun 15 09:34:07.835: VPDN uid:393 vpdn shutdown session, result=4, error=4, vendor_err=0, syslog_error_code=15, syslog_key_type=1
Jun 15 09:34:07.835: %VPDN-3-NORESOURCE: L2TP LNS  no resources for user xyz [at] test; Result 4, Error 4, SSS Manager disconnected session
Jun 15 09:34:07.835: VPDN uid:393 VPDN/AAA: accounting stop sent
Jun 15 09:34:07.835: ppp393 CHAP: O FAILURE id 1 len 26 msg is "Authentication failure"


thanks



________________________________
From: Oliver Boehmer (oboehmer) <oboehmer [at] cisco>
To: ar <ar_djp [at] yahoo>; Tim Warnock <timoid [at] timoid>
Cc: cisco-nsp <cisco-nsp [at] puck>
Sent: Friday, June 15, 2012 7:19 PM
Subject: RE: [c-nsp] LNS Error %VPDN-3-NORESOURCE:


> I tried SRE6 already.
> I got the same error.
> Unfortunately I dont have any TAC support for this box.
>
> Could this be a possible NPE-G2 problem?
>
>
> #sho ver
> Cisco IOS Software, 7200 Software (C7200P-ADVIPSERVICESK9-M), Version
> 12.2(33)SRE6, RELEASE SOFTWARE (fc1)
>
>
> Jun 14 23:10:54.455: ppp76 PPP: Sent CHAP LOGIN Request
> Jun 14 23:10:54.455: ppp76 PPP: Received LOGIN Response PASS
> Jun 14 23:10:54.459: %VPDN-3-NORESOURCE: L2TP LNS LNS1 no resources
for user
> test [at] xyz; Result 4, Error 4, SSS Manager disconnected session
> Jun 14 23:10:54.459: ppp76 CHAP: O FAILURE id 1 len 26 msg is
> "Authentication failure"

don't think this is related to the platform, some debugs are in order to
find out what's happening (my l2tp/vpdn skills are a bit rusty, though
;-)

debug radius
debug aaa author
debug aaa per-user
debug vpdn event
debug vpdn error
debug vpdn l2x-ev
debug vpdn l2x-er
debug vpdn sss err
debug vpdn sss ev

can you share the full configs of both devices offline/unicast?

    oli
_______________________________________________
cisco-nsp mailing list cisco-nsp [at] puck
https://puck.nether.net/mailman/listinfo/cisco-nsp
archive at http://puck.nether.net/pipermail/cisco-nsp/


b.turnbow at twt

Jun 15, 2012, 7:31 AM

Post #10 of 13 (1230 views)
Permalink
Re: LNS Error %VPDN-3-NORESOURCE: [In reply to]
Hi,


> Hi.
>
> Thanks for the reply.
>
> What I noticed today was,
>
> I tried to authenticate one vrf-enabled l2tp session and one global (no-
> vrf).
> The one with VRF can't authenticate. Giving me the error of "LNS no
> resources for user..."
> But the one with no-vrf was able to authenticate successfully.
>

The below config only shows one virtual template, do you have a second for the VRF ?
I believe you need to differentiate .

Regards

Brian

> My tcpdump on the radius server says Authentication Request, and
> Authentication Accept.
> Router debug also shows CHAP login response is PASS.
>
> I tried also using my other LNS (NPE-G1) and any vrf-enabled session is
> successful.
> Both VRF-enabled and GLobal L2tp session terminates on the same vpdn-group.
>
> I have similar config on both LNS routers.
>
>
>
> Here's my LNS config:
>
> vpdn-group 1
>  accept-dialin
>   protocol l2tp
>   virtual-template 1
>  terminate-from hostname LNS1
>  source-ip x.x.x.x
>  local name ABC
>  lcp renegotiation on-mismatch
>  l2tp tunnel password 7 09123456
>  l2tp tunnel timeout no-session 600
>  ip tos reflect
>
>
>
>
> interface Virtual-Template1
>   mtu 1462
>  ip unnumbered Loopback0
>  ip tcp adjust-mss 1422
>  peer default ip address pool LNSPool
>  keepalive 60
>  ppp authentication chap radius-ppp
>
>
>
> Here's the debug pp/aaa/vpdn output:
>
> Jun 15 09:34:07.823: VPDN Received L2TUN socket message Incoming Jun 15
> 09:34:07.823: AAA/BIND(000001E7): Bind i/f Jun 15 09:34:07.823: VPDN
> uid:393 L2TUN socket session accept requested Jun 15 09:34:07.823: VPDN
> uid:393 Setting up dataplane for L2-L2, no idb Jun 15 09:34:07.827: VPDN
> Received L2TUN socket message Connected Jun 15 09:34:07.827:
> AAA/BIND(000001E7): Bind i/f Virtual-Template1 Jun 15 09:34:07.827: VPDN
> uid:393 VPDN session up Jun 15 09:34:07.831: AAA/AUTHEN/PPP (000001E7):
> Pick method list 'radius-ppp'
> Jun 15 09:34:07.831: ppp393 PPP: Sent CHAP LOGIN Request Jun 15
> 09:34:07.831: ppp393 PPP: Received LOGIN Response PASS Jun 15 09:34:07.835:
> VPDN uid:393 disconnect (L2X) IETF: 9/nas-error Ascend: 62/VPDN No
> Resources Jun 15 09:34:07.835: VPDN uid:393 vpdn shutdown session,
> result=4, error=4, vendor_err=0, syslog_error_code=15, syslog_key_type=1
> Jun 15 09:34:07.835: %VPDN-3-NORESOURCE: L2TP LNS  no resources for user
> xyz [at] test; Result 4, Error 4, SSS Manager disconnected session Jun 15
> 09:34:07.835: VPDN uid:393 VPDN/AAA: accounting stop sent Jun 15
> 09:34:07.835: ppp393 CHAP: O FAILURE id 1 len 26 msg is "Authentication
> failure"
>
>
> thanks
>
>
>
> ________________________________
> From: Oliver Boehmer (oboehmer) <oboehmer [at] cisco>
> To: ar <ar_djp [at] yahoo>; Tim Warnock <timoid [at] timoid>
> Cc: cisco-nsp <cisco-nsp [at] puck>
> Sent: Friday, June 15, 2012 7:19 PM
> Subject: RE: [c-nsp] LNS Error %VPDN-3-NORESOURCE:
>
>
> > I tried SRE6 already.
> > I got the same error.
> > Unfortunately I dont have any TAC support for this box.
> >
> > Could this be a possible NPE-G2 problem?
> >
> >
> > #sho ver
> > Cisco IOS Software, 7200 Software (C7200P-ADVIPSERVICESK9-M), Version
> > 12.2(33)SRE6, RELEASE SOFTWARE (fc1)
> >
> >
> > Jun 14 23:10:54.455: ppp76 PPP: Sent CHAP LOGIN Request Jun 14
> > 23:10:54.455: ppp76 PPP: Received LOGIN Response PASS Jun 14
> > 23:10:54.459: %VPDN-3-NORESOURCE: L2TP LNS LNS1 no resources
> for user
> > test [at] xyz; Result 4, Error 4, SSS Manager disconnected session Jun
> > 14 23:10:54.459: ppp76 CHAP: O FAILURE id 1 len 26 msg is
> > "Authentication failure"
>
> don't think this is related to the platform, some debugs are in order to
> find out what's happening (my l2tp/vpdn skills are a bit rusty, though
> ;-)
>
> debug radius
> debug aaa author
> debug aaa per-user
> debug vpdn event
> debug vpdn error
> debug vpdn l2x-ev
> debug vpdn l2x-er
> debug vpdn sss err
> debug vpdn sss ev
>
> can you share the full configs of both devices offline/unicast?
>
>     oli
> _______________________________________________
> cisco-nsp mailing list cisco-nsp [at] puck
> https://puck.nether.net/mailman/listinfo/cisco-nsp
> archive at http://puck.nether.net/pipermail/cisco-nsp/


---
This e-mail is intended only for the addressee named above.
As this e-mail may contain confidential or privileged information,
if you are not the named addressee, you are not authorized to retain, read,
copy or disseminate this message or any part of it.

Please consider your environmental responsibility before printing this e-mail.


_______________________________________________
cisco-nsp mailing list cisco-nsp [at] puck
https://puck.nether.net/mailman/listinfo/cisco-nsp
archive at http://puck.nether.net/pipermail/cisco-nsp/


oboehmer at cisco

Jun 15, 2012, 8:04 AM

Post #11 of 13 (1219 views)
Permalink
Re: LNS Error %VPDN-3-NORESOURCE: [In reply to]
> > I tried to authenticate one vrf-enabled l2tp session and one global
(no-
> > vrf).
> > The one with VRF can't authenticate. Giving me the error of "LNS no
> > resources for user..."
> > But the one with no-vrf was able to authenticate successfully.
> >
>
> The below config only shows one virtual template, do you have a
second for
> the VRF ?
> I believe you need to differentiate .

indeed, check the full diffs of the two configs. is "ip cef" enabled
globally? Is the respective VRF configured? Can you configure a loopback
in this VRF)?

oli

_______________________________________________
cisco-nsp mailing list cisco-nsp [at] puck
https://puck.nether.net/mailman/listinfo/cisco-nsp
archive at http://puck.nether.net/pipermail/cisco-nsp/


ar_djp at yahoo

Jun 15, 2012, 8:55 PM

Post #12 of 13 (1205 views)
Permalink
Re: LNS Error %VPDN-3-NORESOURCE: [In reply to]
Yes I have a loopback on that VRF.
We configure different loopback interfaces per VRF.
Yes the VRF itself was configured.
IP cef enabled since MPLS is enabled.
I can actually ping loopback interface for this VRF on other MPLS PEs.

#sho ip cef summary             
IPv4 CEF is enabled and running

#sh ip vrf interfaces
Interface              IP-Address      VRF                              Protocol
Lo101                  10.16.1.101     VRF-A                          up 


ip vrf VRF-A
 rd 100:109
 route-target export 100:109
 route-target import 100:109




________________________________
From: Oliver Boehmer (oboehmer) <oboehmer [at] cisco>
To: Brian Turnbow <b.turnbow [at] twt>; ar <ar_djp [at] yahoo>; Tim Warnock <timoid [at] timoid>
Cc: cisco-nsp <cisco-nsp [at] puck>
Sent: Friday, June 15, 2012 11:04 PM
Subject: RE: [c-nsp] LNS Error %VPDN-3-NORESOURCE:



> > I tried to authenticate one vrf-enabled l2tp session and one global
(no-
> > vrf).
> > The one with VRF can't authenticate. Giving me the error of "LNS no
> > resources for user..."
> > But the one with no-vrf was able to authenticate successfully.
> >
>
> The below config only  shows one virtual template, do you have a
second for
> the VRF ?
> I believe you need to differentiate .

indeed, check the full diffs of the two configs. is "ip cef" enabled
globally? Is the respective VRF configured? Can you configure a loopback
in this VRF)?

    oli
_______________________________________________
cisco-nsp mailing list cisco-nsp [at] puck
https://puck.nether.net/mailman/listinfo/cisco-nsp
archive at http://puck.nether.net/pipermail/cisco-nsp/


oboehmer at cisco

Jun 15, 2012, 11:35 PM

Post #13 of 13 (1191 views)
Permalink
Re: LNS Error %VPDN-3-NORESOURCE: [In reply to]
Can you please share the full set of debugs I asked earlier as well as
full config (unicast, if you prefer)..

tx!
oli


_______________________________________________
cisco-nsp mailing list cisco-nsp [at] puck
https://puck.nether.net/mailman/listinfo/cisco-nsp
archive at http://puck.nether.net/pipermail/cisco-nsp/

Cisco nsp RSS feed   Index | Next | Previous | View Threaded
 
 


Interested in having your list archived? Contact Gossamer Threads
 
  Web Applications & Managed Hosting Powered by Gossamer Threads Inc.