[c-nsp] pppoe with 7200
Kristofer Sigurdsson
ks at rhi.hi.is
Wed Mar 9 08:57:18 EST 2005
> My recommendation is not to play games with the RADIUS server to keep
> track of your duplicate sessions, it will shoot you in the foot every
> time, especially on large installations. The RADIUS protocol isn't
> always reliable enough to make sure you receive EVERY single start and
> stop record. While a few RADIUS servers (like Radiator) allow you to
> double check the NAS box via SNMP to see if a user is still logged in,
> it doesn't scale well and adds a lot of unnecessary processing load on a
> RADIUS server. (especially a RADIUS server like Radiator that is not
> multi threaded).
Agreed. But it's the only way to accomplish the task; to limit the number
of simultanious logins from the same username.
>
> That being said, you CAN limit the amount of PPPoE sessions coming from
> a single MAC address or a single PVC for that matter.
You're right, this is a better way and easily configured on the router.
However, the original poster specifially stated that this would not be enough
for him, he wanted to limit logins per username.
--
Kristófer Sigurðsson | Tel: +354 525 4103 / MSN: ks at rhi.hi.is
Netsérfr./Network specialist | Reiknistofnun HÍ/University of Iceland
More information about the cisco-nsp
mailing list