Gbenga wrote:
In folks,The VPDN authentication takes place in two steps. First the NAS attempts to authenticate the tunnel by sending a request with a username 'dnis:XXX' where XXX is the dialed number (this is in the case of DNIS based vpdns) or User-Name='xxxx.com' for domain based vpdn's where the user name is [EMAIL PROTECTED] (see the Cisco 'vpdn search-order' command) In both cases the default password is 'cisco' and the Service-Type attribute is set to 'Outbound-User'. You must therefore have an entry in your user file like:
This is more of a network problem than freeradius but
I have been at it for days now and left with no option
than to share the burden with you.
I have freeradius v 0.71 setup on Solaris (
authenticating from file) and need to have users
dialing into a A5S300 open a tunnel into another
router.
According to all the documents I have perused, all I
need to do is enable vpdn on the local AS5300 and on
the remote router. Set up the proper virtual template and vpdn-group on the remote router. All should work
well.
I have enabled vpdn on the AS5300 and I have setup the
remote router with vpdn-group to receive the incoming
tunnel. I assigned the vpdn-group to a virtual
interface. Set up all the necessary options on the
group.
I am currently testing this setup and I cannot get the
user to open a tunnel to the other side.
My configuration files have been dumped into the
following url http://uk.geocities.com/stjames08
I would like to find out what I have not completed to
make this function.
Thank you,
Gbenga.
dnis:XXXX Password == 'cisco',Service-Type == Outbound-User
(vpdn attributes.....)
or
xxxx.com Password == 'cisco',Service-Type == Outbound-User
(vpdn attributes.....)
The second part of the authentication process is from the LNS or home gateway router and is a normal user authentication, i.e. the full username. You should therefore have another entry for the user:
[EMAIL PROTECTED] Password== ..... etc.
Good luck
Eddie
- List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
