(RADIATOR) Denying Auth based on Part of a Called-Station-ID

Hugh Irvine hugh at open.com.au
Wed Feb 19 17:58:12 CST 2003 

Hello Mike -

There are two ways to do this (at least :-)).

The first and simplest is to use cascaded AuthBy's.

# define AuthBy clauses

<AuthBy FILE>
	Identifier CheckCalledStationId
	Filename %D/calledstations
</AuthBy>

<AuthBy ...>
	Identifier YourNormalAuthBy
	.....
</AuthBy>

.....

# define Realms

<Realm ....>
	AuthBy CheckCalledStationId
	....
</Realm>

.......


The file "%D/calledstations" would contain this:

# calledstations

DEFAULT Called-Station-Id = 8659999999, Auth-Type = YourNormalAuthBy

DEFAULT Auth-Type = Reject


 From your description below I am not sure whether the above will work?

I suspect I may need to see your existing configuration file (no 
secrets) and a bit more detail on exactly what you want to do with the 
Called-Station-Id's.

regards

Hugh


On Wednesday, Feb 19, 2003, at 20:09 Australia/Melbourne, Mike Walker 
wrote:

> This is what I am trying to do:
>
> I need to deny authentication to any number in the 865 area code 'other
> than' 865-999-9999.
>
> My current configuration does not include any <Handler>'s yet, but this
> seems to me like a good place for one.  Problem is, I want it based on 
> a
> 'piece' of the Called-Station-ID (area code), and not the whole thing.
> Basically I just want all subscribers, regardless of realm, not to be
> able to connect to any other 865 POP but the one number we give them.
>
> Please let me know if I am going in the right direction with this, and
> possibly how to get around the 'part of the Called-Station-ID' issue.
> Much thanks in advance for the clues!
>
>
> -Mike Walker
> US Express.net, Inc.
>
> ===
> Archive at http://www.open.com.au/archives/radiator/
> Announcements on radiator-announce at open.com.au
> To unsubscribe, email 'majordomo at open.com.au' with
> 'unsubscribe radiator' in the body of the message.
>
>

-- 
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. Available on *NIX, *BSD, Windows 95/98/2000, NT, MacOS X.
-
Nets: internetwork inventory and management - graphical, extensible,
flexible with hardware, software, platform and database independence.

===
Archive at http://www.open.com.au/archives/radiator/
Announcements on radiator-announce at open.com.au
To unsubscribe, email 'majordomo at open.com.au' with
'unsubscribe radiator' in the body of the message.

More information about the radiator mailing list