RADIUSdesk

logo
Trace: ppp-primer

This is an old revision of the document!

Table of Contents

PPPoE Primer

Introduction

With simple TCP/IP based networks there are two common ways to quickly establish a network connection.

  • Providing a DHCP server for the devices connecting to the network. Your phone and laptop connecting to the LTE router at home is a classic example.
  • Providing a PPPoE server for devices connecting to the network. If you are a client of a WISP, the Customer premises equipment (CPE) at your home / office will most likely be a PPPoE client in order to provide connectivity to the WIPS's network.
  • If you are not working for a WISP or ISP the exposure to PPPoE might be limited and this page will serve as a background primer.

Why use PPPoE

  • PPPoE comes in handy when you want to manage access to a network.
  • The most basic PPPoE servers require a username and password combination before establishing a connection from the client.
  • The client is thus configured with a username and password in order to identify itself to the PPPoE server.
  • More advanced PPPoE servers include support for RADIUS which feature a central user store and options like bandwidth limiting or data usage quotas and usage tracking.
  • This all makes PPPoE a favorite method used by ISPs and WISPs to manage client connections.
  • The other alternative option to PPPoE is to use a Captive Portal on the break-out point of a network with a DHCP server in order to manage network access, bandwidth and usage quotas.
  • Compare this now with the home network of a LTE router. If someone connects to it (making use of DHCP) there is not really a way for you to prevent them from establishing a connection or limiting their bandwidth.

The PPPoE Protocol

  • There are lots of documentation on the inner workings of the PPPoE protocol.
  • This section will just cover the main points.
  • The PPPoE protocol is a layer 2 protocol.
  • This means that it does not contain an IP Address.
  • This is in a way similar to a DHCP discovery packet for instance where the request is broadcasted on the broadcast domain (data link layer)
  • For a PPPoE client to find out if there are any PPPoE servers around it starts with the PPPoE Discovery stage. (Broadcast)
  • PPPoE servers will then reply to the client informing them that they are available. (Usually there is only one PPPoE server running in a broadcast domain.)
  • The client will then proceed to communicate directly with the server (Unicast) on the MAC level in order to establish the session.
  • Once the session is establish, the data transmitted between the PPPoE client and PPPoE server will be wrapped inside the PPPoE and PPP protocols.
  • Inside these packets will be the data used for normal TCP/IP communication.
  • See the screenshots below of some packets captured on a PPPoE network.
Last modified: 2023/09/25 05:54