[cisco-bba] deny user's ip address and use from local pool

Tassos Chatzithomaoglou achatz at forthnet.gr
Tue Sep 26 04:19:11 EDT 2006


I'm trying to forbid users from using their own address when terminating through a l2tp tunnel and use only ips from local defined pools. The problem 
is that i don't want to use any aaa server, so authentication/authorization is set to none (so everyone terminating there can login).

I see that there is a command "ppp ipcp accept-address" that allows peers to define their own address and another command "ppp ipcp dns reject" that 
denies peers from defining their own dns servers.

Is there a way to deny user defined ip addresses in order to provide ips only from local pools, especially when not using any aaa server?

Regards,
Tassos


More information about the cisco-bba mailing list