[c-nsp] Clearing L2TP sessions
Ryan O'Connell
ryan at complicity.co.uk
Sat Mar 12 05:45:26 EST 2005
On 10/03/2005 13:38, Tony Archer wrote:
>Not sure if this is what you want , but you can disconnect users using a
>Packet of Disconnect (POD):
>
>http://www.cisco.com/en/US/products/sw/iosswrel/ps1839/products_feature_guide09186a0080087ccd.html
>
>We have used this to automate cutting off users on our LNS
>(7200VXR/NPEG1).
>
>
Thanks - unfortunately at least with 12.3(11)T3 this doesn't work with
forwarded connections, only with connections that terminate locally on
the router - I'm not sure if this is intended behavior or not so I'll
open a TAC case to confirm. It looks like in order to make sure you kill
a session you need to do a POD followed by an interactive login to do a
"clear sss session". (You can clear the Virtual Interface too for
non-forwarded connections, but you'd have to mess about with expect
scripts to do that - POD is eaiser)
For the benefit of the archives - Freeradius-1.0.1 (At least the Debian
version of it) has a radclient that can send disconnect requests.
--
Ryan O'Connell - CCIE #8174
<ryan at complicity.co.uk> - http://www.complicity.co.uk
I'm not losing my mind, no I'm not changing my lines,
I'm just learning new things with the passage of time
More information about the cisco-nsp
mailing list