[nsp] Static-IP on AS5300 via RADIUS
Chris Parker
cparker at starnetusa.net
Fri Feb 7 15:00:40 EST 2003
At 02:54 PM 2/7/2003 -0600, Chris Parker wrote:
>At 08:47 PM 2/7/2003 +0000, Martin Cooper wrote:
>>static Crypt-Password = "<removed>",
>> Service-Type = Framed-User,
>> Framed-Protocol = PPP,
>> Framed-IP-Address = 131.111.xx.xx,
>> Framed-MTU = 1500,
>> Cisco-AVPair = "ip:addr=131.111.xx.xx"
>
>How about trying to use the RFC standard attributes:
>
> Framed-IP-Address = 131.111.xx.xx
>
>Much easier than using Cisco-AVPair. :)
Yes, and I just noticed that up two lines. <smack>
Anyway, it's probably due to your needing some more config on your
NAS. From the 'freeradius/doc/cisco' file:
aaa new-model
aaa authentication login default group radius local
aaa authentication login localauth local
aaa authentication ppp default if-needed group radius local
aaa authorization exec default group radius local
aaa authorization network default group radius local
aaa accounting delay-start
aaa accounting exec default start-stop group radius
aaa accounting network default start-stop group radius
aaa processes 6
The 'aaa author network' is what should do the trick for you.
Cheers,
-Chris
--
\\\|||/// \ StarNet Inc. \ Chris Parker
\ ~ ~ / \ WX *is* Wireless! \ Director, Engineering
| @ @ | \ http://www.starnetwx.net \ (847) 963-0116
oOo---(_)---oOo--\------------------------------------------------------
\ Wholesale Internet Services - http://www.megapop.net
More information about the cisco-nsp
mailing list