(RADIATOR) Radius Profile of an email only group

Hugh Irvine hugh at open.com.au
Tue Jan 8 17:38:30 CST 2002 

Hello Emily -

The configuration looks OK as far as I can tell, however the user definition 
should look like this:

NB - no trailing comma on the first line and white space at the beginning of 
the second and following lines.

# Default Dial-Up PPP EMAIL ONLY User System Profile
DEFAULT Auth-Type = System, NAS-Port-Type = Async, Group = email
	Service-Type = Framed-User,
	Framed-Protocol = PPP,
	Framed-IP-Address = 255.255.255.254,
	Framed-IP-Netmask = 255.255.255.255,
	cisco-avpair = "lcp:interface-config=ip policy route-map email",
	Filter-Id = "email.sec",
	Port-Limit = 1,
	Idle-Timeout = 1200,
	Session-Timeout = 28800,
	Class = email

Of course you will also need an AuthBy clause that understands "Group = 
email" in your Radiator configuration file with an Identifier of "System".

regards

Hugh


On Wed, 9 Jan 2002 10:21, ewhitwor at centurytel.net wrote:
> Hey,
>
> We are trying to setup a filter to work w/Radius to allow for a group that
> has email as the only service!
> This is what we have put together as of now... we haven't tried it yet but
> just wanted to know if anyone
> could tell if it would work make sense to work!! :)
>
> # Default Dial-Up PPP EMAIL ONLY User System Profile
> DEFAULT Auth-Type = System, NAS-Port-Type = Async, Group = email,
> Service-Type = Framed-User,
> Framed-Protocol = PPP,
> Framed-IP-Address = 255.255.255.254,
> Framed-IP-Netmask = 255.255.255.255,
> cisco-avpair = "lcp:interface-config=ip policy route-map email",
> Filter-Id = "email.sec",
> Port-Limit = 1,
> Idle-Timeout = 1200,
> Session-Timeout = 28800,
> Class = email
>
>
> On the RAS BOX
>
> ip policy route-map email
> route-map email permit 10
> match ip address 103
>
> access-list 103 permit tcp any any eq 25
> access-list 103 permit udp any any eq 53
> access-list 103 permit tcp any any eq 110
> access-list 103 permit tcp any any eq 113
> access-list 103 deny any any
>
> Let me know what you think!
>
> Thanks,
> Emily Whitworth

-- 
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. Available on *NIX, *BSD, Windows 95/98/2000, NT, MacOS X.
-
Nets: internetwork inventory and management - graphical, extensible,
flexible with hardware, software, platform and database independence.
===
Archive at http://www.open.com.au/archives/radiator/
Announcements on radiator-announce at open.com.au
To unsubscribe, email 'majordomo at open.com.au' with
'unsubscribe radiator' in the body of the message.

More information about the radiator mailing list