[VOPRadius] "Ghost users causing simultaneous login limit exceeded" (wholesale ports)

[Cary Fitch]

We get "caller's number" from them, just like from our own RASs.   Try them, they don't require any contract.  Their attitude is "We earn our stripes every day."   CF   ----- Original Message ----- From: Gary Carr To: [EMAIL PROTECTED] Sent: Friday, May 21, 2004 8:57 AM Subject: [VOPRadius] "Ghost users causing simultaneous login limit exceeded" (wholesale ports) >GlobalPops position on all the watchdog/stop packet info is that they are UDP and there can be losses with no notification.      That is true but I see watchdog packets as another way to limit abuse, not a 100% sure method.   >Their ultimate ghosting and over use protection is from the logon caller ID. But not the caller ID that consumers get, the one internal to Telecom >Companies.  It can't be blocked.   Hmm, where does that internal caller ID come from that, and does it get passed to the NAS and onto the radius. That sounds very close to the port method that Aleron uses.   >If there are logons from the same number simultaniously, that is a ghost and the old one is "killed".  If they are from different numbers that is "abuse" and it >is allowed to a limit... with abusers duplicate (trust) privledges removed once they are a demonstrated abuser. (So many occurances, for instance.) > >GP doesn't believe in Watchdog packets or for that matter Stop packets as "the truth".  Logons from the same or different numbers are proof positive.     Does GP have a per user cap on the amount of hours? Is so what happens if a user disconnects and doesn't reconnet until the next day or later. In that case the caller-id method would fail to remove the user in a timely manner.     That's pretty interesting. Will they give any more details about that. We were considering adding GlobalPOPs until this thread started. Still may if they have a way to pass the disconnected user information to our radius servers.       Gary