[rbak-nsp] Unknown MAC on different VLANS
Łukasz Kopiszka
lukasz at alfa-system.pl
Wed Mar 20 10:01:52 EDT 2013
> For every session you have mac+vlan + all you need for the specific
> subscriber ( needed info for CoA processing ).
> When you have the subscriber active if the mac is unknown you may
> set to him redirect radius profile , here is the example redirect and
> active.
I don't know how this can solve my problem.
What I have is:
Sending Access-Accept of id 136 to x.x.x.x port 1812
Ip-Address-Pool-Name = "DHCP-Pool-CLIPS-Unknown"
IP-Interface-Name = "CLIENTS-IPoE-Unknown"
Forward-Policy = "in:REDIRECT-Unknown"
HTTP-Redirect-Profile-Name = "KOMUNIKAT-Unknown"
Service-Type = Outbound-User
Acct-Interim-Interval == 300
Service-Type == Outbound-User
Port-Limit == 1
DHCP_Max_Leases == 1
Context-Name == "CLIPS"
rad_recv: Accounting-Request packet from host x.x.x.x port 1812, id=78,
length=434
User-Name = "00:17:08:2e:76:00"
Acct-Status-Type = Start
Acct-Session-Id = "0101FFFF7800041F-5149BC46"
Service-Type = Outbound-User
Acct-Update-Reason = AAA_LOAD_ACCT_SESSION_UP
NAS-Identifier = "ALFASYSTEM"
NAS-Port = 33685504
NAS-Real-Port = 570426344
NAS-Port-Type = Virtual
NAS-Port-Id = "2/2 vlan-id 1000 clips 132127"
Medium-Type = DSL
Mac-Addr = "00-17-08-2e-76-00"
Platform-Type = SE-100
OS-Version = "6.5.1.5"
Acct-Authentic = RADIUS
IP-Interface-Name = "CLIENTS-IPoE-Unknown"
Port-Limit = 1
DHCP-Max-Leases = 1
Ip-Address-Pool-Name = "DHCP-Pool-CLIPS-Unknown"
Source-Validation = Enabled
DHCP-Option = "\014\014\004alfa"
Forward-Policy = "in:REDIRECT-Unknown"
HTTP-Redirect-Profile-Name = "KOMUNIKAT-Unknown"
Acct-Interim-Interval = 600
Qos-Policing-Profile-Name = "customer-out"
Qos-Metering-Profile-Name = "customer-in"
Event-Timestamp = "Mar 20 2013 14:40:23 CET"
What I want is:
Add some missing code in site-availble/default:
Expect sth like:
update reply {
switch magic("{%{NAS-Port-Id}") { <== magic some code which
will extract vlan id from e.g. NAS-Port-Id = "2/2 vlan-id 1000 clips 132127"
case 1000 {
IP-Address-Pool-Name := "DHCP-Pool-CLIPS-Unknown-v1000"
IP-Interface-Name := "CLIENTS-IPoE-Unknown-v1000"
Forward-Policy = "in:REDIRECT-Unknown-v1000"
HTTP-Redirect-Profile-Name = "KOMUNIKAT-Unknown-v1000"
}
case 1001 {
IP-Address-Pool-Name := "DHCP-Pool-CLIPS-Unknown-v1001"
IP-Interface-Name := "CLIENTS-IPoE-Unknown-v1001"
Forward-Policy = "in:REDIRECT-Unknown-v1000"
HTTP-Redirect-Profile-Name = "KOMUNIKAT-Unknown-v1000"
}
case etc { etc }
}
}
Get in freeradius -X for user in vlan ID 1000 sth like:
Sending Access-Accept of id 136 to x.x.x.x port 1812
Ip-Address-Pool-Name = "DHCP-Pool-CLIPS-Unknown-v1000"
IP-Interface-Name = "CLIENTS-IPoE-Unknown-v1000"
Forward-Policy = "in:REDIRECT-Unknown-v1000"
HTTP-Redirect-Profile-Name = "KOMUNIKAT-Unknown-v1000"
Service-Type = Outbound-User
Acct-Interim-Interval == 300
Service-Type == Outbound-User
Port-Limit == 1
DHCP_Max_Leases == 1
Context-Name == "CLIPS"
rad_recv: Accounting-Request packet from host x.x.x.x port 1812, id=78,
length=434
User-Name = "00:17:08:2e:76:00"
Acct-Status-Type = Start
Acct-Session-Id = "0101FFFF7800041F-5149BC46"
Service-Type = Outbound-User
Acct-Update-Reason = AAA_LOAD_ACCT_SESSION_UP
NAS-Identifier = "ALFASYSTEM"
NAS-Port = 33685504
NAS-Real-Port = 570426344
NAS-Port-Type = Virtual
NAS-Port-Id = "2/2 vlan-id 1000 clips 132127"
Medium-Type = DSL
Mac-Addr = "00-17-08-2e-76-00"
Platform-Type = SE-100
OS-Version = "6.5.1.5"
Acct-Authentic = RADIUS
IP-Interface-Name = "CLIENTS-IPoE-Unknown-v1000"
Port-Limit = 1
DHCP-Max-Leases = 1
Ip-Address-Pool-Name = "DHCP-Pool-CLIPS-Unknown-v1000"
Source-Validation = Enabled
DHCP-Option = "\014\014\004alfa"
Forward-Policy = "in:REDIRECT-Unknown-v1000"
HTTP-Redirect-Profile-Name = "KOMUNIKAT-Unknown-v1000"
Acct-Interim-Interval = 600
Qos-Policing-Profile-Name = "customer-out"
Qos-Metering-Profile-Name = "customer-in"
Event-Timestamp = "Mar 20 2013 14:40:23 CET"
--
Pozdrawiam,
Łukasz Kopiszka
www.alfa-system.pl
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://puck.nether.net/pipermail/redback-nsp/attachments/20130320/fb3418f2/attachment-0001.html>
More information about the redback-nsp
mailing list