|
I really appreciate your time in replying
to this, I am going to start playing around with it today and see what I can
break. Do you have a copy of the profile you used in radius? Thanks,
From:
[EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Charles Shaffer Hello Nick, We currently use a 3640 for PPPOE DSL
connections. Here is the radius portion to our config, which works well for us. Please note that the IP address listed
within the config are bogus and any place you see the word “secret”
you will need to substitute the secret listed in VOPRadius for this NAS. Here is a quick breakdown of each section. Section 1 – All the aaa stuff. This
is pretty standard for Cisco equipment Section 2 – Here we define our
radius servers. We currently have two. Section 3 – Here is where we tell
the 3640 which servers to use, the auth and acct ports and the shared secret
between the it and VOPRadius. In section 3 there are two entries your
might want to play with to find out what works best for you. The “retransmit 3” tells the
3640 to try three times to contact the first radius server before giving up and
moving to the second server. The “deadtime 30” tells the
3640 to skip any radius server that it failed to contact for 30 minutes. This
will cut down on possible connection timeouts if, for example, you have your
first radius server offline for updates or servicing. No use in having the 3640
spinning its wheels trying to contact a server that is not going to answer.
Also some CPE equipment have very short connection timeouts. Hope this helps. SECTION 1 aaa authentication login default enable aaa authentication ppp default group
radius aaa authorization network default group
radius local aaa accounting send stop-record
authentication failure aaa accounting network default start-stop
group radius aaa nas port extended SECTION 2 ip host innernet.net 10.0.0.1 10.0.0.2 ip host first.radius.server.name 10.0.0.1 ip host second.radius.server.name 10.0.0.2 ip domain-name your.domain.name ip name-server 10.0.0.1 ip name-server 10.0.0.2 SECTION3 radius-server configure-nas radius-server host 10.0.0.1 auth-port 1812
acct-port 1813 key secret radius-server host 10.0.0.2 auth-port 1812
acct-port 1813 key secret radius-server retransmit 3 radius-server deadtime 30 radius-server directed-request radius-server attribute 44
include-in-access-req radius-server key secret From: A few years back I played with PPPOE for our dsl connections
when I worked for another isp. I did this on a 3640 and used VOP Radius, but I
have since lost my old configs. Does anyone here have experience with this that
might lead me in the right direction so that I might get this setup properly. Thanks in advance,
| ||||||||||||||||||||||||||||||||||||
<<image001.jpg>>
