Hello, I have a problem and I hope that You can help me, please!?
version: 1.0.0
I want use (Free)RADIUS for AAA on IPv6.
Only one router, one RADIUS server and one user. User(IPv6 address) connect
with Telnet to
Router(IPv6 address)
Questions:
Can RADIUS solve this problem?
Can be RADIUS on Linux with IPv6 address?(problem with: radius-server host
192.168.2.2 auth-port
1812 acct-port 1813 - there is not IPv6 address)
if yes, I need configuration of RADIUS
if no, and it is on IPv4 address, need configuration of RADIUS
Example: If all addresses are IPv4)
Conf. on router:
Router(config)# aaa new-model
Router(config)# radius-server host 192.168.2.2 auth-port 1812 acct-port 1813
Router(config)# radius-server retransmit 1
Router(config)# radius-server key radius
Router(config)# aaa authentication login default group radius
Router(config)# aaa authorization exec default group radius
Conf. of RADIUS:
clients.conf:
client 192.168.2.1 {
secret = radius
shortname = ethernet
nastype = cisco
}
users:
test Auth-Type := Local, User-Password == "test"
I read RFC 3162 but it didn't help me...
best solution for me is:
Router(config)# aaa new-model
Router(config)# radius-server host !!different!! 2001::2/64(IPv6) auth-port
1812 acct-port 1813
Router(config)# radius-server retransmit 1
Router(config)# radius-server key radius
Router(config)# aaa authentication login default group radius
Router(config)# aaa authorization exec default group radius
Conf. of RADIUS:
clients.conf:
client !!different!!2001:1::/64(Ipv6) {
secret = radius
shortname = ethernet
nastype = cisco
!!different!!
and there something like : Login-IPv6-Host
NAS-IPv6-Address
}
users:
test Auth-Type := Local, User-Password == "test"
but this in not possible:)
PLEASE HELP!
