(RADIATOR) Cisco Filters
Hugh Irvine
hugh at open.com.au
Tue Jul 6 18:05:49 CDT 2004
Hello Antonio -
You can do this with cisco-avpairs:
someuser Password = xxxxx
cisco-avpair = "ip:inacl#5=permit ip any 192.168.10.0 0.0.0.255",
cisco-avpair = "ip:inacl#15=permit ip any host 10.0.0.1",
cisco-avpair = "ip:inacl#20=permit udp any any eq domain",
cisco-avpair = "ip:inacl#25=permit tcp any any eq domain",
cisco-avpair = "ip:inacl#30=permit tcp any any established",
cisco-avpair = "ip:inacl#35=permit udp any any range 1024 9000",
cisco-avpair = "ip:inacl#99=deny ip any any"
This topic has also been discussed on the mailing list:
www.open.com.au/archives/radiator
regards
Hugh
On 7 Jul 2004, at 03:05, Antonio Mórtigo wrote:
> Hi,
>
> Anyone has been configured the radiator to send filters to Cisco NAS
> for each user? I tried to configure the reply packets but I don't know
> the syntax for those filters, anybody has this syntax or any idea
> about that?
>
> Regards,
>
> Antonio
>
> --
> Archive at http://www.open.com.au/archives/radiator/
> Announcements on radiator-announce at open.com.au
> To unsubscribe, email 'majordomo at open.com.au' with
> 'unsubscribe radiator' in the body of the message.
>
>
NB: have you included a copy of your configuration file (no secrets),
together with a trace 4 debug showing what is happening?
--
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. Available on *NIX, *BSD, Windows, MacOS X.
-
Nets: internetwork inventory and management - graphical, extensible,
flexible with hardware, software, platform and database independence.
-
CATool: Private Certificate Authority for Unix and Unix-like systems.
--
Archive at http://www.open.com.au/archives/radiator/
Announcements on radiator-announce at open.com.au
To unsubscribe, email 'majordomo at open.com.au' with
'unsubscribe radiator' in the body of the message.
More information about the radiator
mailing list