Re: limiting access on certain ports

Stephen Fisher (lithium@cia-g.com)
Mon, 18 Aug 1997 17:09:11 -0600 (MDT)

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Robert Boyle: "Lucent K56Flex Upgrades broke a few modems"
Previous message: Eric Forcey: "Re: DUN & Win95"

That will let the particular user only on that port, I think the original
poster wants a way to keep all others off of that port as well.

- Steve
- Systems Manager
- Community Internet Access, Inc.
- Gallup and Grants, New Mexico

On 18 Aug 1997, Per Hedeland wrote:

> J. S. Nakamura wrote:
> >What is the best way to limit login on a certain port (say port s29) so
> >only a certain user can login (say user abc), at the same time all other
> >ports (s0 through s28) it will authenticate any valid users in RADIUS? We
> >are using Livingston's RADIUS server 2.0. Only way I can think of is have
> >30 entries in the users file for each port. But this makes the users file
> >very ugly.
>
> Wouldn't this work?
>
> abc Auth-Type = System, Framed-Protocol = PPP, NAS-IP-Address =x.x.x.x, NAS-Port=29
> Service-Type = Framed-User,
> ...
>
> DEFAULT Auth-Type = Reject, NAS-IP-Address =x.x.x.x, NAS-Port=29
>
> DEFAULT Auth-Type = System, Framed-Protocol = PPP
> Service-Type = Framed-User,
> ...
>
> If you don't want to upgrade to Radius 2.0.1 to get the Auth-Type = Reject,
> you could use Auth-Type = Local, Password = <some "impossible" password>.
>
> --Per Hedeland
> per@erix.ericsson.se
>

Next message: Robert Boyle: "Lucent K56Flex Upgrades broke a few modems"
Previous message: Eric Forcey: "Re: DUN & Win95"