File: README.CVX

package info (click to toggle)
xtradius 1.2.1-beta2-1
  • links: PTS
  • area: main
  • in suites: sarge
  • size: 1,252 kB
  • ctags: 921
  • sloc: ansic: 10,181; perl: 733; sh: 260; makefile: 149; sql: 21
file content (101 lines) | stat: -rw-r--r-- 2,981 bytes parent folder | download | duplicates (5) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
 


	Configuring a Nortel CVX NAS for Radius.



Cistron Internet has used CVX1800 equipment for some time. Here's
a sample configuration based on what we used.

Highlights:

o It sets the mgmt_addr which is needed to get the CVX to send the
  NAS-IP-Address attribute.
o This config assumes you have 2 radius servers, a primary and
  a backup server.
o The CVX monitors which server is up using status-server polling.
  It switches over to the secondary when the primary is gone but
  switches back to the primary when it comes back up. Well, it
  should anyway - I'm not that much of a CVX guru yet.

configure system
  configure ip_services
    configure ip_services_config
      set mgmt_addr <ethernet IP address here!>
      commit
    return
    configure ip_service
      configure ip_dns_ns 1
        set ip_addr <Primary DNS IP number here>
        commit
      return
      configure ip_dns_ns 2
        set ip_addr <Secondary DNS IP number here>
        commit
      return
    configure ip_aaa_remote
      configure ip_aaa_group 1
        configure ip_aaa_radius_config
          set session_id_style hex
          set vendor_spec_id disable
          commit
        return
        configure ip_aaa_set 1
          configure ip_aaa_server 1
            set ip_addr <IP address of primary radius server here>
            set ip_port 1645
            set key <shared secretkey here>
            set trace true
            set monitor_type status-server
            commit
          return
          configure ip_aaa_server 2
            set ip_addr <IP address of secondary radius server here>
            set ip_port 1645
            set key <shared secretkey here>
            set trace true
            set monitor_type status-server
            commit
          return
          configure ip_aaa_set_config
            set name "Authentication Set"
            set mode monitor
            commit
          return
        return
      return
      configure ip_aaa_group 2
        configure ip_aaa_radius_config
          set session_id_style hex
          set vendor_spec_id disable
          commit
        return
        configure ip_aaa_set 1
          configure ip_aaa_server 1
            set ip_addr <IP address of primary radius server here>
            set ip_port 1646
            set key <shared secretkey here>
            set trace true
            set monitor_type status-server
            commit
          return
          configure ip_aaa_server 2
            set ip_addr <IP address of secondary radius server here>
            set ip_port 1646
            set key <shared secretkey here>
            set trace true
            set monitor_type status-server
            commit
          return
          configure ip_aaa_set_config
            set name "Accounting Set"
            set mode monitor
            commit
          return
        return
      return
    return
  return
return

	$Id: README.CVX,v 1.2 2001/12/13 15:19:32 miquels Exp $