I think in victors vpdn configuration do not contain authen-before forward command.<div>Also I think this command doesnt make sense to solve the victors issue.<br><br><div class="gmail_quote">On Sat, Jan 24, 2009 at 6:22 PM, Wayne Lee <span dir="ltr"><<a href="mailto:linkconnect@googlemail.com">linkconnect@googlemail.com</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex;">Hi Victor<br>
<br>
We see the same thing here, I believe it's because of the<br>
authen-before forward in the vpdn config but I'm unable to test<br>
removing it at the moment as the lab is busy<br>
<br>
<br>
I'm interested in a solution for this also.<br>
<br>
<br>
<br>
<br>
Wayne<br>
<br>
On Sat, Jan 24, 2009 at 8:59 AM, Victor Lyapunov<br>
<<a href="mailto:victor.lyapunov@gmail.com">victor.lyapunov@gmail.com</a>> wrote:<br>
> Hello all<br>
><br>
> I am trying to perform some tests where a Cisco router takes up the<br>
> role of a LAC, forwarding PPP calls<br>
> to the appropriate LNS according to the domain name provided by the user.<br>
> At the same time this LAC must be able to localy terminate PPP<br>
> sessions offering internet services to<br>
> subscribers. I have used a fairly simple config like the<br>
><br>
> aaa group server radius SUBS<br>
> server a.b.c.d auth-port 1812 acct-port 1813<br>
> throttle accounting 150<br>
> load-balance method least-outstanding<br>
> !<br>
> aaa authentication ppp SUBS group SUBS<br>
> aaa authorization network SUBS<br>
> aaa accounting network SUBS<br>
> action-type start-stop<br>
> aaa accounting network default none<br>
><br>
> vpdn-group <l2tp-domain><br>
> request-dialin<br>
> protocol l2tp<br>
> domain <l2tp-domain><br>
> initiate-to ip x.x.x.x<br>
> source-ip y.y.y.y<br>
> local name LAC<br>
> l2tp tunnel password 0 cisco<br>
><br>
> bba-group pppoe PPPOE<br>
> virtual-template 10<br>
><br>
> interface Virtual-Template10<br>
> ip unnumbered Loopback0<br>
> peer default ip address pool PPP_POOL_1<br>
> ppp authentication pap SUBS<br>
> ppp authorization SUBS<br>
> ppp accounting SUBS<br>
><br>
><br>
> The problem is that for the users that are localy terminated we need<br>
> radius accounting. On the other hand<br>
> no accounting is required for the L2TP forwarded users. Still the<br>
> router generated accounting Start / Stop<br>
> messages for these VPDN users creating extra load for the radius server.<br>
><br>
> Is there a way to differentiate the accounting between VPDN and localy<br>
> terminated subscribers? Specificaly disable<br>
> accounting for L2TP fordwarded users and at the same time use radius<br>
> accounting for localy terminated subscribers.<br>
><br>
> Any help is welcomed<br>
> _______________________________________________<br>
> cisco-nsp mailing list <a href="mailto:cisco-nsp@puck.nether.net">cisco-nsp@puck.nether.net</a><br>
> <a href="https://puck.nether.net/mailman/listinfo/cisco-nsp" target="_blank">https://puck.nether.net/mailman/listinfo/cisco-nsp</a><br>
> archive at <a href="http://puck.nether.net/pipermail/cisco-nsp/" target="_blank">http://puck.nether.net/pipermail/cisco-nsp/</a><br>
><br>
_______________________________________________<br>
cisco-bba mailing list<br>
<a href="mailto:cisco-bba@puck.nether.net">cisco-bba@puck.nether.net</a><br>
<a href="https://puck.nether.net/mailman/listinfo/cisco-bba" target="_blank">https://puck.nether.net/mailman/listinfo/cisco-bba</a><br>
</blockquote></div><br></div>