RE: (RADIATOR) Simulatnius-usae and Port-limit
> Especially note that it only limits multilink ISDN sessions, it does not > prevent two separate non-multilinked logins. It doesn't not solve the > problem you face, you'll have to think of another way around it - static > IPs, caller id, multilink session ids (if your NAS sends them - > Cisco does). > > Port-Limit is not the solution. Neither is Simultaneous-Usage. One workaround is to assign the user the same IP address each time via Framed-IP-Address. Depending on the NAS, the call will either be terminated or the original or the new call won't function properly (also depends on your routing configuration). For example, if 2 calls are placed to a single Bay 5399 and the same IP address is assigned to both, the 2nd call will be terminated after NCP is established because the IP address that the Radius-Accept packet has told the 5399 to use is already in use locally. Regards, Andrew === Archive at http://www.thesite.com.au/~radiator/ To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
Re: (RADIATOR) Simulatnius-usae and Port-limit
On Thu, Aug 19, 1999 at 04:56:11PM +0200, Ben-Nes Michael wrote: > So how othe Radius server do this ? > And what the livingston send that tell the Radius that its the second port of the > current Session ? > It's not able to do this. It can send Port-Limit = You can configure Radiator to send the same Reply attribute, however, there's substantial caveats in the Livingston RADIUS server: http://www.livingston.com/tech/docs/radius/userinfo.html#1014088 Especially note that it only limits multilink ISDN sessions, it does not prevent two separate non-multilinked logins. It doesn't not solve the problem you face, you'll have to think of another way around it - static IPs, caller id, multilink session ids (if your NAS sends them - Cisco does). Port-Limit is not the solution. Neither is Simultaneous-Usage. [EMAIL PROTECTED] === Archive at http://www.thesite.com.au/~radiator/ To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
Re: (RADIATOR) Simulatnius-usae and Port-limit
So how othe Radius server do this ? And what the livingston send that tell the Radius that its the second port of the current Session ? Hugh Irvine wrote: > On Thu, 19 Aug 1999, Ben-Nes Michael wrote: > > Hi > > > > I think that every Nas that can give multilink PPP is bind to Port-Limit. > > As for the Livingston(pm2-3) its does not care about Simultaneous Use at all, and > > just count the port. > > > > I wonder if livingston radius do it by SNMP or just remember the session in the > > memory > > Radiator can be configured to do either of the above, but again if the NAS > sends an identical radius request, there is no good solution. > > cheers > > Hugh > > -- > Radiator: the most portable, flexible and configurable RADIUS server > anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald, > Platypus, Freeside, TACACS+, PAM, external, etc etc on Unix, Win95/8, > NT, Rhapsody > > === > Archive at http://www.thesite.com.au/~radiator/ > To unsubscribe, email '[EMAIL PROTECTED]' with > 'unsubscribe radiator' in the body of the message. -- -- Canaan Surfing Ltd. Internet Service Providers Ben-Nes Michael - Manager Tel: 972-6-6925757 Fax: 972-6-6925858 http://www.canaan.co.il -- === Archive at http://www.thesite.com.au/~radiator/ To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
Re: (RADIATOR) Question on radiator
On Thu, Aug 19, 1999 at 09:25:20AM +, Alexander Koch wrote: > Hallo. > > As I am evaluating a new radius daemon to chose I have some > questions on Radiator. > > We have several Ascend Max 4k and 6k, all doing radius auth > to special hosts (several, no real redundancy and backup), > we are running the Ascend radius daemon (oh well, no comments, > please) and we would need one feature: > > Have several (2+) radius servers that respond differently > (however that is achieved, config-wise, fall-through or > something) depending on the source IP of the request. > So far we have two radius daemons on the same box, each is > listening to another port. This works, but if it can be just > one radius daemon, this would be really fine. > Is anything like this possible? And, if so, how (roughly)? > Mind you, this is no roaming... > How do you mean differently? Radiator is able to use NAS-IP-Address (or similar) and Handlers to use different authentication sources etc. # whatever ... # something else ... You could do it at another level with NAS-IP-Address check items as well. [EMAIL PROTECTED] === Archive at http://www.thesite.com.au/~radiator/ To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
(RADIATOR) Question on radiator
Hallo. As I am evaluating a new radius daemon to chose I have some questions on Radiator. We have several Ascend Max 4k and 6k, all doing radius auth to special hosts (several, no real redundancy and backup), we are running the Ascend radius daemon (oh well, no comments, please) and we would need one feature: Have several (2+) radius servers that respond differently (however that is achieved, config-wise, fall-through or something) depending on the source IP of the request. So far we have two radius daemons on the same box, each is listening to another port. This works, but if it can be just one radius daemon, this would be really fine. Is anything like this possible? And, if so, how (roughly)? Mind you, this is no roaming... Thanks, Alexander -- SGH Internet Division, Alexander Koch, Systems Administration Hannover, Germany, Phone +49 511 909198 0, Fax +49 511 391307 === Archive at http://www.thesite.com.au/~radiator/ To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
Re: (RADIATOR) Simulatnius-usae and Port-limit
On Thu, 19 Aug 1999, Ben-Nes Michael wrote: > Hi > > I think that every Nas that can give multilink PPP is bind to Port-Limit. > As for the Livingston(pm2-3) its does not care about Simultaneous Use at all, and > just count the port. > > I wonder if livingston radius do it by SNMP or just remember the session in the > memory Radiator can be configured to do either of the above, but again if the NAS sends an identical radius request, there is no good solution. cheers Hugh -- Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald, Platypus, Freeside, TACACS+, PAM, external, etc etc on Unix, Win95/8, NT, Rhapsody === Archive at http://www.thesite.com.au/~radiator/ To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.