Hello, It work with Radius @ Merit ;)
Regards, Nicolas ---------------------------------------- STRINA Nicolas IP Network Manager VTX Services - Internet Service Provider Av. de Lavaux, 101 CH-1009 Pully [EMAIL PROTECTED] http://www.vtx.ch ---------------------------------------- -----Message d'origine----- De : [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]De la part de Jerome Tissieres Envoye : lundi, 2. decembre 2002 16:15 A : [EMAIL PROTECTED] Objet : Rep. : Re: [swinog] huge ddos potential with ZyXEL ADSL Routers? Hi Pascal, Hi all, Is it working with any radius server or only with Cisco Network Registrar server ? Thanks, Jerome >>> [EMAIL PROTECTED] 02.12.2002 16:08:33 >>> [...] > I added a drop rule for icmp to my broadcast address in my zyxels filter > set, but this is not a default rule. > Isn't there a way to solve that problem on the isp level? ISPs could simply null route the broadcast address of all their ADSL customer with a fix ip range. In this case the router nor the customer will reply. If they use a Cisco as LNS they could simply add this in their radius server Cisco-AVpair="lcp:interface-config=ip address <broadcast_ip> 255.255.255.255 secondary\n" That will add a 2nd IP on the Virtual-Access interface and block the broadcast @ the ISP side. In this case the router will reply once. P. ---------------------------------------------- [EMAIL PROTECTED] Maillist-Archive: http://www.mail-archive.com/swinog%40swinog.ch/ ---------------------------------------------- [EMAIL PROTECTED] Maillist-Archive: http://www.mail-archive.com/swinog%40swinog.ch/ ---------------------------------------------- [EMAIL PROTECTED] Maillist-Archive: http://www.mail-archive.com/swinog%40swinog.ch/
