Add Point-to-Point Profile (ADDTCPPTP)

Where allowed to run: All environments (*ALL)
Threadsafe: No 		Parameters
Examples
Error messages

The Add Point-to-Point TCP/IP Profile (ADDTCPPTP) command is used to create a simple PPP (point-to-point protocol) connection profile. Profiles can be created to answer incoming calls by specifying OPRMODE(*ANS), or to dial remote systems by specifying OPRMODE(*DIAL).

Note: The preferred method of creating point-to-point profiles is through iSeries Navigator, since it supports all features of PPP. In cases where it is not feasible to create a point-to-point profile using iSeries Navigator, the ADDTCPPTP command can be used to create a simple point-to-point profile.

Restrictions:

Top

Parameters

Keyword Description Choices Notes
CFGPRF Configuration profile Character value Required, Positional 1
OPRMODE Operating mode *ANS, *DIAL Required, Positional 2
RSRCNAME Resource name Name, *CALC Optional, Positional 3
MODEM Modem Character value, *RSRCNAME, *SELECT Optional
CALLNBR Calling number Character value, *NONE Optional
LCLINTNETA Local internet address Character value, *OPRMODE, *CURRENT, *DYNAMIC Optional
RMTINTNETA Remote internet address Character value, *OPRMODE, *DYNAMIC Optional
ENBPPPAUT Enable PPP authentication *NO, *YES Optional
PPPAUT PPP authentication Element list Optional
Element 1: User name and password Values (up to 10 repetitions): Element list
Element 1: User name Character value
Element 2: User password Character value
Element 2: Authentication protocol *ENCRYPTED, *UNENCRYPTED
Element 3: Validation list Name, *CFGPRF
INACTTMR Inactivity timer 15-65535, *NOMAX Optional
TEXT Text 'description' Character value, *BLANK Optional
FULLMASQ Full masquerading *NO, *YES Optional
IPDTGFWD IP datagram forwarding *NO, *YES Optional
ALWRMTOVR Allow remote address override *NO, *YES Optional
ADDDFTRTE Add default route *NO, *YES Optional
Top

Configuration profile (CFGPRF)

Specifies the point-to-point configuration profile to be added.

This is a required parameter.

character-value
Specify the name of a point-to-point configuration profile to add.
Top

Operating mode (OPRMODE)

Specifies the mode of operation for this point-to-point connection profile.

This is a required parameter.

*ANS
The profile is defined to answer calls from a remote system.
*DIAL
The profile is defined to dial a remote system.
Top

Resource name (RSRCNAME)

Specifies the communications hardware resource to be used by this profile.

*CALC
The resource name will be determined as follows:
  • Look for resources being used by the 2771 integrated modem. If only one 2771 is defined, use that resource for this PPP line. *CALC is not valid if more than one 2771 modem is defined.
  • If a 2771 cannot be used, determine if any resources are defined for use by ECS (Electronic Customer Support). If an ECS resource is available, use that resource for this PPP line.
  • If neither a single 2771 integrated modem or ECS resource is available, the resource cannot be calculated and it will have to be explicitly defined.
name
Specify the name of the hardware resource.

Note: You can use the Work With Hardware Resources (WRKHDWRSC) command with *CMN specified for the TYPE parameter to help determine the resource name.

Top

Modem (MODEM)

Specifies the modem description to use for this point-to-point profile. The list of currently supported modem descriptions can be seen by using the *SELECT value in interactive mode or by using option 11 from the CFGTCPPTP (Configure TCP/IP point-to-point) command.

*RSRCNAME
The modem name will be determined based on the value defined for the RSRCNAME parameter.
  • If the resource is defined to use the 2771 integrated modem, the '2771 Internal Modem' description will be used.
  • If the resource is defined to use the 2772 integrated modem, the '2772 Internal Modem' description will be used.
  • If the resource is defined to use the 2761 internal modem, the '2761 Internal Modem' description will be used.
  • If the ECS resource was chosen, the 'IBM 7852-400' modem description will be used.
  • Otherwise, if the resource does not have a pre-defined modem description, MODEM(*RSRCNAME) cannot be used and the modem description will have to be explicitly defined.
*SELECT
A list of modems is shown from which you will select the modem to use. This option is only valid when running the ADDTCPPTP CL command in interactive mode, otherwise an error will occur. If you are running interactively, it is recommended that you use the *SELECT value to help ensure that you properly select the modem to use.
character-value
Specify the name of the modem to use. Note that modem names are case sensitive and must match exactly to the modems defined for the system.

You can also specify a generic name of the modem you wish to use. A generic modem name is a character string of one or more characters followed by an asterisk (*); for example, 'abc*'. If a generic name is specified, then the first modem name that matches the generic name will be used. It is recommended that you include as many characters in the modem name string as possible to avoid any ambiguity. If an asterisk is not included with the generic (prefix) name, the system assumes it to be the complete modem name. The actual modem name chosen will be posted in a message in the job log.

Top

Calling number (CALLNBR)

Specifies the telephone number of the remote system to call. This parameter is only used when OPRMODE(*DIAL) is defined.

*NONE
No telephone number is defined. If OPRMODE(*DIAL) is specified, a value other then *NONE must be defined for this parameter.
character-value
Specify the telephone number to call to connect to the remote system. If additional numbers are required to establish an outside call, they must also be specified. Special character ',' (comma) may be used to signify if a delay is required before dialing the next number. Typically this delay is one second for most modems.
Top

Local internet address (LCLINTNETA)

Specifies the local internet address of the system to be used for this PPP connection.

*OPRMODE
The mode of operation will determine the local IP address. If OPRMODE(*DIAL) is specified, the local IP address will be defined as *DYNAMIC. If OPRMODE(*ANS) is specified, the local IP address will defined as *CURRENT.
*DYNAMIC
The IP address will be defined by the remote system during PPP negotiations.
*CURRENT
The current local IP address will be used. This address is determined as follows:
  • If a local host name has been defined using the Change TCP/IP Domain (CHGTCPDMN) command, this host name will be resolved to an IP address (either defined in the local host table or by a domain name server). If this IP address is found to also exist on the local system, it will be used.
  • If no local host name is defined, or could not be resolved to, the first valid local IP address found will be used.
  • If no valid local IP addresses are found, *CURRENT will not be allowed.
character-value
Specify the internet address to use as the local IP address for this PPP profile. The address specified here can already exist on the system or a unique IP address can be defined.
Top

Remote internet address (RMTINTNETA)

Specifies the internet address of the remote system to use for this PPP connection.

*OPRMODE
The mode of operation will determine the remote IP address. If OPRMODE(*DIAL) is specified, the remote IP address will be defined as *DYNAMIC. If OPRMODE(*ANS) is specified, the remote IP address will be defined as '169.254.x.x' where 169.254.x.x is a reserved IANA LINKLOCAL network address. The actual host portion (x.x) of this address will be determined at run-time.
*DYNAMIC
The IP address will be defined by the remote system during PPP negotiations.
character-value
Specify the internet address to use as the remote IP address for this PPP profile. The address specified here must be an unique IP address for this system.
Top

Enable PPP authentication (ENBPPPAUT)

Specifies whether PPP authentication will be enabled for this profile.

*NO
No PPP authentication will be required to either connect to the remote system or to allow the remote system to connect to the local system.
*YES
PPP authentication will be required to either connect to the remote system or to allow the remote system to connect to the local system.
Top

PPP authentication (PPPAUT)

Specifies the PPP authentication values to use for PPP authentication. This parameter is only in effect if ENBPPPAUT(*YES) is defined.

Element 1: User name and password

Specifies the user names and passwords to use for PPP authentication. Only one user name and password can be specified for OPRMODE(*DIAL) profiles. Up to ten user names and passwords can be specified for OPRMODE(*ANS) profiles. Additional entries can be added with iSeries Navigator.

Element 1: User name

character-value
Specify the user name to be used for PPP authentication. Each user name can be up to 64 characters in length. User names are case sensitive and will be stored exactly as they are entered.

Element 2: User password

character-value
Specify the password associated with the user name. Each password can be up to 64 characters in length. Passwords are case sensitive and will be stored exactly as they are entered.

Element 2: Authentication protocol

Specifies which authentication protocol to use for PPP authentication. This value also specifies which authentication protocol to associate with each specified user name and password.

*ENCRYPTED
Only PPP authentication methods using encrypted passwords will be used. This value will support both EAP (Extended Authentication Protocol) and CHAP (Challenge Authentication Protocol - using MD-5 hashing algorithm).
*UNENCRYPTED
Only PPP authentication methods using unencrypted passwords will be used. Currently this is limited to PAP (Password Authentication Protocol).

Note: This method of authentication is not as secure as CHAP or EAP since it allows user name and password information to flow over the link unprotected.

Element 3: Validation list

Specifies the validation list used to store remote user name and password information for OPRMODE(*ANS) profiles. This element is ignored if OPRMODE(*DIAL) is specified. All validation lists defined for use by PPP must exist in library QUSRSYS.

*CFGPRF
The validation list to store user name and password information is the same name as the point-to-point profile. If the validation list does not exist, it will be created in library QUSRSYS.
name
Specify the name of the validation list in library QUSRSYS to store username and password information. If the validation list does not exist, it will be created.
Top

Inactivity timer (INACTTMR)

Specifies the time (in seconds) that the system waits for user data activity for this profile before disconnecting. This timer is started once LCP (Link Control Protocol) and NCP (Network Control Protocol) negotiations have completed successfully, and restarted when user data is sent or received. LCP and NCP packets do not cause this timer to be restarted.

*NOMAX
The inactivity timer is disabled.
15-65535
Specify the number of seconds to use as the timer value.
Top

Text 'description' (TEXT)

Specifies the text description for the point-to-point profile.

*BLANK
No text is specified.
character-value
Specify no more than 50 characters of text, enclosed in apostrophes.
Top

Full masquerading (FULLMASQ)

Specifies whether full masquerading will be used. If enabled, all IP addresses will be hidden behind the remote IP address for the dial PPP connection. This parameter is only in effect if OPRMODE(*DIAL) is specified. This feature allows all outbound IP traffic to have it's source IP address translated to the remote IP address defined for the PPP link. The source port is also modified, so that return IP traffic can be properly associated with the correct conversation and have it's IP address and destination port changed back to the correct values.

This feature is particularly useful to allow other hosts on the same network as the local system to use the system as a gateway to the internet. If the local system is connected to the internet using an ISP (Internet Service Provider), the other hosts, such as PCs, could also gain access to the internet and 'hide' behind the system's assigned PPP IP address.

*NO
No IP addresses will be hidden (masqueraded) behind the system's PPP IP address.
*YES
All IP addresses will be hidden (masqueraded) behind the system's PPP IP address when traffic flows out the PPP link.
Top

IP datagram forwarding (IPDTGFWD)

Specifies whether IP datagram forwarding is enabled for this PPP connection. This parameter is only in effect if OPRMODE(*ANS) is specified.

*NO
Internet Protocol (IP) will discard those datagrams from the remote system that are not destined for any addresses local to this system.
*YES
This allows Internet Protocol (IP) datagrams not destined for this system to pass through this system onto a connected network. Enabling IP datagram forwarding essentially enables the system to act as router for this connection. Careful security considerations should be reviewed prior to enabling IP forwarding for the PPP link. Note that this will only take effect if system wide IP datagram forwarding is enabled, otherwise it will be ignored even if marked. System-wide IP datagram forwarding is controlled by the IPDTGFWD parameter on the CHGTCPA (Change TCP/IP Attributes) command.
Top

Allow remote address override (ALWRMTOVR)

Specifies whether remote systems will be allowed to override the remote IP address defined in RMTINTNETA. This parameter is only in effect if OPRMODE(*ANS) is specified and RMTINTNETA(*DYNAMIC) is not specified.

*NO
If a specific remote IP address is defined for RMTINTNETA, remote systems will not be allowed to define their own address. The remote system must use the address defined by the local system or the PPP connection will be terminated.
*YES
If a specific remote IP address is defined for RMTINTNETA, remote systems will still be allowed to define their own address. This is useful if you want to allow more than one type of remote client to be able to dial into the system. Typically the remote system dialing in will request that it be told what its IP address is. By specifying ALWRMTOVR(*YES), you tell remote clients what their IP address should be, but also allow other remote clients to specify their own address without the need for an additional profile or resource.
Top

Add default route (ADDDFTRTE)

Specifies whether you want a default route added when this Point-to-Point Connection profile is started. This parameter is only in effect if OPRMODE(*DIAL) is specified.

*NO
A default route will NOT be automatically added.
*YES
A default route will be automatically added when this Point-to-Point profile is started. The next hop address will be the IP address of the remote system.
Top

Examples

Example 1: Create an Answer Profile 

ADDTCPPTP   CFGPRF(ANSPROFILE)  OPRMODE(*ANS)

This command will create answer PPP profile with the following properties

Example 2: Create a PPP Dial Profile 

ADDTCPPTP   CFGPRF(DIALPROF)  OPRMODE(*DIAL)  RSRCNAME(CMN14)
            MODEM('2761 Internal Modem')  CALLNBR('1,,9876543')
            ENBPPPAUT(*YES)
            PPPAUT(((dialuser dialpw)) *ENCRYPTED *CFGPRF)
            FULLMASQ(*YES)

This command will create a dial PPP profile with the following properties:

Example 3: Create Profile Using Predefined IP Addresses 

ADDTCPPTP   CFGPRF(ANSPROFILE)  OPRMODE(*ANS)  RSRCNAME(CMN10)
            MODEM('USRobotics 56K*')  LCLINTNETA('10.9.8.1')
            RMTINTNETA('10.9.8.2')  ENBPPPAUT(*YES)
            PPPAUT(((RmtID1 RmtPW1) (RmtID2 RmtPW2))
                    *ENCRYPTED PPPVLDL)
            TEXT('PPP *ANS profile')  IPDTGFWD(*YES)

This command will create an answer PPP profile with the following properties:

Top

Error messages

*ESCAPE Messages

TCP83D0
Point-to-point profile &1 not added.
Top