Hello,
I'm trying to set up rate-limited user access using a cisco router (1700) ie simulating a NAS. Clients (WinXP) connect using PPPoE to the router which acts as RADIUS client for freeradius. Connections are ok but rate limitation doesn't work at all. I tried adding Cisco-Data-Rate, Cisco-Data-Xmit, connect-rx-speed and connect-tx-speed as attributes to the radreply table but the router seems to ignore them (ex. username is 'test', attribute is 'Cisco-Data-Rate', op is '=' and value is '256' i.e. 256kbit/s).
Cisco vsa hack is yes in radiusd.conf
Here's the Cisco configuration:
aaa group server radius PPPOE
server 192.168.2.3 auth-port 1812 acct-port 1813
!
aaa authentication ppp default if-needed group radius local
aaa authentication ppp pppoe_client group radius
aaa authorization network default group radius
aaa accounting update newinfo
aaa accounting exec default start-stop group radius
aaa accounting network default start-stop group radius
aaa accounting connection default start-stop group radius
aaa session-id common
server 192.168.2.3 auth-port 1812 acct-port 1813
!
aaa authentication ppp default if-needed group radius local
aaa authentication ppp pppoe_client group radius
aaa authorization network default group radius
aaa accounting update newinfo
aaa accounting exec default start-stop group radius
aaa accounting network default start-stop group radius
aaa accounting connection default start-stop group radius
aaa session-id common
Thanx,
Alex
Do you Yahoo!?
Yahoo! Finance Tax Center - File online. File on time.
