<html><body style="word-wrap: break-word; -webkit-nbsp-mode: space; -webkit-line-break: after-white-space; ">I see, there is a DHCP proxy/relay between the subscriber and smartedge.<div><br></div><div>This is similar to what I have done in the past and used the dhcp server policy to create a different next hop for clients. in this case, i use an interface to assign to the vlan so I could reach the proxy server (192.168.24.5) and route the subnet to it. The multibind interface is part of the subnet and acts as si-addr, the clients are given the IP of the proxy as the nearest router... but this is going to make you create multiple smaller IP address ranges instead of your /18.</div><div><br></div><div><br></div><div><br></div><div><div>context Region1</div><div>! </div><div> no ip domain-lookup</div><div>!</div><div> interface Region1-clips multibind</div><div> ip address 206.107.158.7/25</div><div> dhcp server interface</div><div>!</div><div> interface loop0 loopback</div><div> description Source for RADIUS Authentication</div><div> ip address 198.172.156.17/32</div><div> ip source-address radius </div><div>!</div><div> interface toLocal</div><div> ip address 10.0.1.6/30</div><div>!</div><div> interface vlan101</div><div> ip address 192.168.24.1/24</div><div> ip source-address dhcp-server </div><div> no logging console</div><div>!</div><div> aaa authentication subscriber radius </div><div>!</div><div> radius server 216.152.192.13 key xxxx oldports</div><div> radius server 216.152.192.21 key xxxx oldports</div><div> radius attribute nas-ip-address interface loop0</div><div> radius algorithm round-robin</div><div>!</div><div> subscriber default</div><div> qos policy policing silver_in</div><div> qos policy metering silver_out</div><div> dhcp max-addrs 1</div><div> dns primary 205.146.98.2</div><div> dns secondary 206.107.152.2</div><div>!</div><div> ip route 0.0.0.0/0 10.0.1.5</div><div> ip route 206.107.158.0/25 192.168.24.5</div><div>!</div><div> dhcp server policy</div><div> subnet 206.107.158.0/25</div><div> range 206.107.158.25 206.107.158.126</div><div> option router 206.107.158.1</div><div> default-lease-time 900</div><div> maximum-lease-time 1200</div><div>!</div><div><div>port ethernet 1/2</div><div> description 100mb Ethernet</div><div> no shutdown</div><div> encapsulation dot1q</div><div> bind interface etherwan-mgt local</div><div> dot1q pvc 101 </div><div> service clips dhcp context Region1</div><div> bind interface vlan101 Region1</div><div><br></div></div><div><br></div><div><div>On 19-Jun-09, at 6:21 AM, Илья Савин wrote:</div><br class="Apple-interchange-newline"><blockquote type="cite"><div lang="RU" link="blue" vlink="purple"><div class="Section1"><pre style="margin-top: 0cm; margin-right: 0cm; margin-bottom: 0.0001pt; margin-left: 0cm; font-size: 10pt; font-family: 'Courier New'; "><font size="2" face="Courier New"><span lang="EN-US" style="font-size: 10pt; "><o:p> </o:p></span></font></pre><pre style="margin-top: 0cm; margin-right: 0cm; margin-bottom: 0.0001pt; margin-left: 0cm; font-size: 10pt; font-family: 'Courier New'; "><font size="2" face="Courier New"><span lang="EN-US" style="font-size: 10pt; ">Nearest to redback switch, witch acts as DHCP-Relay, also acts as router for subscribers. Traffic between all clients routed by this routing switch, and internet traffic goes to RedBack. Each /24 subnet is in own VLAN, routing switch has IP in each VLAN, this IP is the default gateway for clients in this VLAN.<o:p></o:p></span></font></pre><pre style="margin-top: 0cm; margin-right: 0cm; margin-bottom: 0.0001pt; margin-left: 0cm; font-size: 10pt; font-family: 'Courier New'; "><font size="2" face="Courier New"><span lang="EN-US" style="font-size: 10pt; "><o:p> </o:p></span></font></pre><pre style="margin-top: 0cm; margin-right: 0cm; margin-bottom: 0.0001pt; margin-left: 0cm; font-size: 10pt; font-family: 'Courier New'; "><font size="2" face="Courier New"><span lang="EN-US" style="font-size: 10pt; ">I don’t want to steer all traffic to one client :)<o:p></o:p></span></font></pre><pre style="margin-top: 0cm; margin-right: 0cm; margin-bottom: 0.0001pt; margin-left: 0cm; font-size: 10pt; font-family: 'Courier New'; "><font size="2" face="Courier New"><span lang="EN-US" style="font-size: 10pt; ">I’m used Framed-Route = "0.0.0.0 188.116.130.253 1" trying set default gateway to 188.116.130.253. I don’t find any other radius attributes to set default gateway.<o:p></o:p></span></font></pre><pre style="margin-top: 0cm; margin-right: 0cm; margin-bottom: 0.0001pt; margin-left: 0cm; font-size: 10pt; font-family: 'Courier New'; "><font size="2" face="Courier New"><span lang="EN-US" style="font-size: 10pt; "><o:p> </o:p></span></font></pre><pre style="margin-top: 0cm; margin-right: 0cm; margin-bottom: 0.0001pt; margin-left: 0cm; font-size: 10pt; font-family: 'Courier New'; "><font size="2" face="Courier New"><span lang="EN-US" style="font-size: 10pt; "><o:p> </o:p></span></font></pre><pre style="margin-top: 0cm; margin-right: 0cm; margin-bottom: 0.0001pt; margin-left: 0cm; font-size: 10pt; font-family: 'Courier New'; "><font size="2" face="Courier New"><span lang="EN-US" style="font-size: 10pt; ">>Just out of interest, why would you want to do this?<o:p></o:p></span></font></pre><pre style="margin-top: 0cm; margin-right: 0cm; margin-bottom: 0.0001pt; margin-left: 0cm; font-size: 10pt; font-family: 'Courier New'; "><font size="2" face="Courier New"><span lang="EN-US" style="font-size: 10pt; ">><o:p> </o:p></span></font></pre><pre style="margin-top: 0cm; margin-right: 0cm; margin-bottom: 0.0001pt; margin-left: 0cm; font-size: 10pt; font-family: 'Courier New'; "><font size="2" face="Courier New"><span lang="EN-US" style="font-size: 10pt; ">>Do you mean:<o:p></o:p></span></font></pre><pre style="margin-top: 0cm; margin-right: 0cm; margin-bottom: 0.0001pt; margin-left: 0cm; font-size: 10pt; font-family: 'Courier New'; "><font size="2" face="Courier New"><span lang="EN-US" style="font-size: 10pt; ">><o:p> </o:p></span></font></pre><pre style="margin-top: 0cm; margin-right: 0cm; margin-bottom: 0.0001pt; margin-left: 0cm; font-size: 10pt; font-family: 'Courier New'; "><font size="2" face="Courier New"><span lang="EN-US" style="font-size: 10pt; ">>A. Enable the client to have internet access through your redback (via<o:p></o:p></span></font></pre><pre style="margin-top: 0cm; margin-right: 0cm; margin-bottom: 0.0001pt; margin-left: 0cm; font-size: 10pt; font-family: 'Courier New'; "><font size="2" face="Courier New"><span lang="EN-US" style="font-size: 10pt; ">>your network) -> then this framed route is not required, this is the<o:p></o:p></span></font></pre><pre style="margin-top: 0cm; margin-right: 0cm; margin-bottom: 0.0001pt; margin-left: 0cm; font-size: 10pt; font-family: 'Courier New'; "><font size="2" face="Courier New"><span lang="EN-US" style="font-size: 10pt; ">>default IPCP behaviour.<o:p></o:p></span></font></pre><pre style="margin-top: 0cm; margin-right: 0cm; margin-bottom: 0.0001pt; margin-left: 0cm; font-size: 10pt; font-family: 'Courier New'; "><font size="2" face="Courier New"><span lang="EN-US" style="font-size: 10pt; ">><o:p> </o:p></span></font></pre><pre style="margin-top: 0cm; margin-right: 0cm; margin-bottom: 0.0001pt; margin-left: 0cm; font-size: 10pt; font-family: 'Courier New'; "><font size="2" face="Courier New"><span lang="EN-US" style="font-size: 10pt; ">>or<o:p></o:p></span></font></pre><pre style="margin-top: 0cm; margin-right: 0cm; margin-bottom: 0.0001pt; margin-left: 0cm; font-size: 10pt; font-family: 'Courier New'; "><font size="2" face="Courier New"><span lang="EN-US" style="font-size: 10pt; ">><o:p> </o:p></span></font></pre><pre style="margin-top: 0cm; margin-right: 0cm; margin-bottom: 0.0001pt; margin-left: 0cm; font-size: 10pt; font-family: 'Courier New'; "><font size="2" face="Courier New"><span lang="EN-US" style="font-size: 10pt; ">>B. Steer ALL traffic from your network through this one subscriber<o:p></o:p></span></font></pre><pre style="margin-top: 0cm; margin-right: 0cm; margin-bottom: 0.0001pt; margin-left: 0cm; font-size: 10pt; font-family: 'Courier New'; "><font size="2" face="Courier New"><span lang="EN-US" style="font-size: 10pt; ">>in which case you would need:<o:p></o:p></span></font></pre><pre style="margin-top: 0cm; margin-right: 0cm; margin-bottom: 0.0001pt; margin-left: 0cm; font-size: 10pt; font-family: 'Courier New'; "><font size="2" face="Courier New"><span lang="EN-US" style="font-size: 10pt; ">><o:p> </o:p></span></font></pre><pre style="margin-top: 0cm; margin-right: 0cm; margin-bottom: 0.0001pt; margin-left: 0cm; font-size: 10pt; font-family: 'Courier New'; "><font size="2" face="Courier New"><span lang="EN-US" style="font-size: 10pt; ">> Framed-IP-Address = 188.116.130.99<o:p></o:p></span></font></pre><pre style="margin-top: 0cm; margin-right: 0cm; margin-bottom: 0.0001pt; margin-left: 0cm; font-size: 10pt; font-family: 'Courier New'; "><font size="2" face="Courier New"><span lang="EN-US" style="font-size: 10pt; ">><o:p> </o:p></span></font></pre><pre style="margin-top: 0cm; margin-right: 0cm; margin-bottom: 0.0001pt; margin-left: 0cm; font-size: 10pt; font-family: 'Courier New'; "><font size="2" face="Courier New"><span lang="EN-US" style="font-size: 10pt; ">> Framed-IP-Netmask = 255.255.255.0<o:p></o:p></span></font></pre><pre style="margin-top: 0cm; margin-right: 0cm; margin-bottom: 0.0001pt; margin-left: 0cm; font-size: 10pt; font-family: 'Courier New'; "><font size="2" face="Courier New"><span lang="EN-US" style="font-size: 10pt; ">><o:p> </o:p></span></font></pre><pre style="margin-top: 0cm; margin-right: 0cm; margin-bottom: 0.0001pt; margin-left: 0cm; font-size: 10pt; font-family: 'Courier New'; "><font size="2" face="Courier New"><span lang="EN-US" style="font-size: 10pt; ">> </span>Framed-Route = "0.0.0.0 0.0.0.0 188.116.130.99 1"<o:p></o:p></font></pre><pre style="margin-top: 0cm; margin-right: 0cm; margin-bottom: 0.0001pt; margin-left: 0cm; font-size: 10pt; font-family: 'Courier New'; "><font size="2" face="Courier New"><span lang="EN-US" style="font-size: 10pt; ">><o:p> </o:p></span></font></pre><pre style="margin-top: 0cm; margin-right: 0cm; margin-bottom: 0.0001pt; margin-left: 0cm; font-size: 10pt; font-family: 'Courier New'; "><font size="2" face="Courier New"><span lang="EN-US" style="font-size: 10pt; ">></span>Dave.<o:p></o:p></font></pre><div style="margin-top: 0cm; margin-right: 0cm; margin-bottom: 0.0001pt; margin-left: 0cm; font-size: 12pt; font-family: 'Times New Roman'; "><font size="3" face="Times New Roman"><span style="font-size: 12pt; "><o:p> </o:p></span></font></div></div>_______________________________________________<br>redback-nsp mailing list<br><a href="mailto:redback-nsp@puck.nether.net" style="color: blue; text-decoration: underline; ">redback-nsp@puck.nether.net</a><br><a href="https://puck.nether.net/mailman/listinfo/redback-nsp" style="color: blue; text-decoration: underline; ">https://puck.nether.net/mailman/listinfo/redback-nsp</a><br></div></blockquote></div><br><div apple-content-edited="true"> <div style="word-wrap: break-word; -webkit-nbsp-mode: space; -webkit-line-break: after-white-space; "><div><br><br></div><div>--</div><div>Ron Ripley</div><div><a href="mailto:ripleydotnet@gmail.com">ripleydotnet@gmail.com</a></div><div><br></div><br><br></div> </div><br></div></body></html>