[nsp] Cisco AS5300 Configuration -- Help

Oliver Boehmer (oboehmer) oboehmer at cisco.com
Mon Jan 27 07:36:55 EST 2003 

Hi,

> > we should not accept a user-provided address *unless* the 
> address the
> > user requests falls within the pool and is available for assignment.
> 
> The user-provided address falls within the pool. Is there any 
> way where we can even restrict this.

No, I fear this is not possible, in fact IOS' pool mechanism tries to
allocate the same address every time the user logs in. 
Why do you want to prevent this? To prevent the use of "pseudo-static"
addresses? ;-)
Of course you could move the pool mechanism and address assignment to
your AAA server. This would give you full control over your address
assignment policy.

	oli

> ----- Original Message -----
> From: "Oliver Boehmer (oboehmer)" <oboehmer at cisco.com>
> To: "S Vijay" <vijay at netmagicsolutions.com>
> Cc: <cisco-nsp at puck.nether.net>
> Sent: Saturday, January 25, 2003 3:34 PM
> Subject: RE: [nsp] Cisco AS5300 Configuration -- Help
> 
> 
> > Hi,
> >
> > we should not accept a user-provided address *unless* the 
> address the
> > user requests falls within the pool and is available for assignment.
> >
> > If the AS5300 accepts *any* ip address we need to look 
> closer and would
> > need the user's radius profile, "show version" and some 
> debugs ("debug
> > radius", "debug ppp neg", "debug aaa author")
> >
> > oli
> >
> > -----Original Message-----
> > From: S Vijay [mailto:vijay at netmagicsolutions.com]
> > Sent: Donnerstag, 23. Januar 2003 10:06
> > To: cisco-nsp at puck.nether.net
> > Subject: [nsp] Cisco AS5300 Configuration -- Help
> >
> >
> > Hi All,
> >
> > I have a cisco AS5300 as RAS and Freeradius as RADIUS Server. When a
> > user dials in with Fixed IP configuration in his Dial Up 
> Networking, the
> > user is alloted that IP.
> >
> > I want the IP allocation to occur from the RAS and it 
> should over ride
> > the Fixed IP Configuration the user does in his Dialup Networking.
> >
> > Please let me know if anything has to be done in the Cisco AS5300
> > Configuration. I am attaching my RAS configuration.
> >
> > Thanks and Regards
> >
> > S Vijay
> >
> > _______________________________________________
> > cisco-nsp mailing list  cisco-nsp at puck.nether.net
> > http://puck.nether.net/mailman/listinfo/cisco-nsp
> > archive at http://puck.nether.net/pipermail/cisco-nsp/
> >
> 
>

More information about the cisco-nsp mailing list