Re: (RADIATOR) AV-PAIR attribute to send to apply a ACL list on Cisco AS5400

2003-03-18 Thread Hugh Irvine 

Hello Tony -

This is really a question for Cisco, however a quick check of the archives turns up this (and more besides):

www.open.com.au/archives/radiator

search on "cisco-avpair filter"

http://www.open.com.au/archives/radiator/2002-11/msg00091.html

The answer is to simply use the standard attribute "Filter-Id = .".

regards

Hugh


On Wednesday, Mar 19, 2003, at 01:10 Australia/Melbourne, Tony wrote:

Hi Everyone,
 
We are evaluating Radiator.
 
Would anyone know the AV-PAIR attribute to send to a Cisco AS5400 NAS to apply an ACL list (already configured on the Cisco) to someone connecting (in the authentication moment).
 
Thanks,
Tony


NB: have you included a copy of your configuration file (no secrets), 
together with a trace 4 debug showing what is happening?

-- 
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. Available on *NIX, *BSD, Windows 95/98/2000, NT, MacOS X.
-
Nets: internetwork inventory and management - graphical, extensible,
flexible with hardware, software, platform and database independence.

Re: (RADIATOR) AV-PAIR attribute to send to apply a ACL list on Cisco AS5400

2003-03-18 Thread Mike McCauley 


--  Forwarded Message  --

Subject: BOUNCE [EMAIL PROTECTED]:Non-member submission from 
[EMAIL PROTECTED]
Date: Tue, 18 Mar 2003 08:36:38 -0600
From: [EMAIL PROTECTED]
To: [EMAIL PROTECTED]

>From [EMAIL PROTECTED] Tue Mar 18 08:36:37 2003
Received: from wembley.cinergycom.net (wembley.cinergycom.net [216.135.3.2])
by server1.open.com.au (8.11.6/8.11.0) with ESMTP id h2IEab811475
for <[EMAIL PROTECTED]>; Tue, 18 Mar 2003 08:36:37 -0600
Received: from wembley.cinergycom.net ([216.135.3.2])
by wembley.cinergycom.net with esmtp (Exim 3.36 #2)
id 18vIBa-RL-00; Tue, 18 Mar 2003 08:35:26 -0600
Date: Tue, 18 Mar 2003 08:35:22 -0600 (CST)
From: [EMAIL PROTECTED]
X-X-Sender: [EMAIL PROTECTED]
To: Tony <[EMAIL PROTECTED]>
cc: [EMAIL PROTECTED]
Subject: Re: (RADIATOR) AV-PAIR attribute to send to apply a ACL list on
 Cisco AS5400
In-Reply-To: <[EMAIL PROTECTED]>
Message-ID: <[EMAIL PROTECTED]>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII

I did this using name based filters on the Cisco (however I don't think it
would be any different with number based filters).

Filter-ID = myfilter
or
Filter-ID = 103

One thing I did learn is that there is a bug in Cisco IOS that prevents
you from using '.' in the filter name.  So 'myfilter' would work, but
'my.filter' would not.

Hope this helps.

  --Jamie

On Tue, 18 Mar 2003, Tony wrote:
->Hi Everyone,
->
->We are evaluating Radiator.
->
->Would anyone know the AV-PAIR attribute to send to a Cisco AS5400 NAS to
->apply an ACL list (already configured on the Cisco) to someone connecting
->(in the authentication moment).
->
->Thanks,
->Tony
->

---

-- 
Mike McCauley   [EMAIL PROTECTED]
Open System Consultants Pty. LtdUnix, Perl, Motif, C++, WWW
24 Bateman St Hampton, VIC 3188 Australia   http://www.open.com.au
Phone +61 3 9598-0985   Fax   +61 3 9598-0955

Radiator: the most portable, flexible and configurable RADIUS server 
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald, 
Platypus, Freeside, TACACS+, PAM, external, Active Directory, EAP, TLS, 
TTLS, PEAP etc on Unix, Windows, MacOS etc.

===
Archive at http://www.open.com.au/archives/radiator/
Announcements on [EMAIL PROTECTED]
To unsubscribe, email '[EMAIL PROTECTED]' with
'unsubscribe radiator' in the body of the message.