[prev in list] [next in list] [prev in thread] [next in thread] 

List:       cistron-radius
Subject:    Re: Support Needed.
From:       "M.Bilal Fassy" <bilal () slt ! lk>
Date:       2001-02-28 4:57:03
[Download RAW message or body]

Thanks Mike.
Thats a good one  "I think you're not quite sure how this all fits together,
right?"



-----Original Message-----
From: Miquel van Smoorenburg <miquels@cistron-office.nl>
To: cistron-radius@lists.cistron.nl <cistron-radius@lists.cistron.nl>
Date: Wednesday, February 28, 2001 12:25 AM
Subject: Re: Support Needed.


>In article <001a01c0a144$8a714120$c20673cb@visual.lk>,
>M.Bilal Fassy <bilal@slt.lk> wrote:
>>Can anybody tell me whether this setting is OK for PPP Dialin. Also how
>>do i specify REMOTE IP for the dialup user.
>
>I think you're not quite sure how this all fits together, right?
>Let's walk through the entry:
>
>>DEFAULT Group = "dialnosh", Auth-Type = System,
>>Fall-Through = 1
>
>Why Fall-Through = 1 ? Also, you need a few spaces at the beginning
>of the line, and a comma at the end (comma means continuation)
>Or did you put Fall-Through = 1 on the check-item line?
>
>Hmm, you probably have a mailer that fscks up your layout.. hard
>to tell what you really meant here.
>
>>Service-Type = Framed-User,
>>Framed-Protocol = PPP,
>
>That is fine
>
>>Framed-IP-Address = 203.115.29.89,
>>Framed-IP-Netmask = 255.255.255.0,
>
>Are you sure you want to assign 203.115.29.89 to the remote user
>and route the entire 203.115.29.0/255.255.255.0 network to the
>remote user ? That is what you are defining here.
>
>>Framed-Routing = Broadcast-Listen,
>
>Are you also sure you want the remote user to be able to send RIP
>routing messages to your routers (BIG SECURITY HOLE). Usually
>you don't want to set Framed-Routing. If you really feel an urge
>to set that attribute use Framed-Routing = None (meaning: no, I do
>not want to exchange RIP routing stuff with the remote user).
>
>>Framed-Filter-Id = "std.ppp",
>
>Did you actually define the "std.ppp" filter on your router ?
>
>>Framed-MTU = 1500,
>>Framed-Compression = Van-Jacobsen-TCP-IP
>
>
>You probably want something like
>
>DEFAULT Group = "dialnosh", Auth-Type = System
> Service-Type = Framed-User,
> Framed-Protocol = PPP,
> Framed-MTU = 1500,
> Framed-Compression = Van-Jacobson-TCP-IP,
> Framed-IP-Address = 255.255.255.254,
> Framed-IP-Netmask = 255.255.255.255
>
>Mike.
>--
>I live the way I type; fast, with a lot of mistakes.
>
>
>-
>Please read this lists info at http://www.miquels.cistron.nl/radius/list/
>


- 
Please read this lists info at http://www.miquels.cistron.nl/radius/list/

[prev in list] [next in list] [prev in thread] [next in thread]