Assigning IP address from RADIUS to Cisco PPTP users
Vadim Ostranitsyn
hmm at tomsk.mts.ru
Wed May 27 03:10:50 CEST 2009
Hi!
On Tue, May 26, 2009 at 11:34:41AM -0400, up at 3.am wrote:
> Users are currently authenticating fine and getting assigned IPs from the
> IP pool as defined in the Cisco NAS. However, I'd like to have a few,
> select users assigned static IPs from outside that pool, but the Cisco
> (2811) is simply ignoring the raddb/users file entry for that user and
> assigning an IP from the pool on the NAS.
[...]
> interface Virtual-Template1
> ip unnumbered FastEthernet0/0
> ip policy route-map VPN-Client
> peer match aaa-pools
> peer default ip address pool vpnpool
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
Drop this line
> no keepalive
> ppp encrypt mppe auto
> ppp authentication pap chap ms-chap ms-chap-v2
> !
> ip local pool vpnpool 172.16.30.2 172.16.30.254
> ---------
> Here is the raddb/users file entry:
> ---------
> testuser Service-Type == Framed-User
> Framed-Protocol == PPP,
> Framed-IP-Address = 172.16.1.2,
> Framed-IP-Netmask = 255.255.255.255,
> Framed-Compression = Van-Jacobson-TCP-IP
Cisco-AVPair = "ip:addr-pool=vpnpool"
Add line above to the DEFAULT user entry.
--
Vadim Ostranitsyn (Evil's Flowers, VO45-RIPE, VO15-RIPN)
Tomsk Cellular Communications Ltd / Mobile TeleSystems OJSC
Work phone: +7(3822)571072, mobile: 500595/+7(913)8200595.
More information about the Freeradius-Users
mailing list