[rbak-nsp] Some cleverness needed

David Freedman david.freedman at uk.clara.net
Fri Dec 4 13:17:05 EST 2009


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

I've a context acting as LAC for a customer and I would like to "walled
garden" (http redirect) their end-users when the customer's network fails.

Since the context only contains routes for their LNS endpoints, I will
be terminating the users locally (through aaa authentication radius,
none) and using HTTP redirect.

The problem arises when the end-user's browser initiates a DNS request,
if the customer's network is completely offline, I'll need to handle
this as well.

Can't find any reference to a DNS proxy in SEOS so my next best option
is to NAT them somehow so they can access our public DNS servers,
I wanted to do this intercontext and wanted to know the following:

1. Is NAT policy now possible on L2TP subscriber? (last I checked it was
not)

2. Is intercontext NAT possible? (i.e to local context) despite lack of
an intercontext interface? (was planning on doing an static intercontext
route)

3. Any alternatives to this? can't place anything else in the network
since it is dedicated.

Thanks in advance,

Dave.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

iEYEARECAAYFAksZUiEACgkQtFWeqpgEZrLYsACgs/h7kC9l3lxJpo1aMtYoCbNS
VhYAnA18ReDu971+xf7OzCqhz46LjhOn
=jl0H
-----END PGP SIGNATURE-----


More information about the redback-nsp mailing list