Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
229
Views
0
Helpful
2
Replies

Access Server security with PPP dialin/callback

Go to solution
jlacis
Level 1
Level 1

‎06-17-2003 04:14 AM - edited ‎03-02-2019 08:11 AM

I have set up AS5300 with dial-in and callback. The solution I am looking for is - how to restrict username/password access to the access server itself !?

My configuration :

interface Group-Async1

ip unnumbered Ethernet0

no ip proxy-arp

encapsulation ppp

ip tcp header-compression

no ip mroute-cache

ip policy route-map ORG-Intra

async mode interactive

peer default ip address dhcp

no fair-queue

compress mppc

ppp callback accept

ppp authentication ms-chap ORG-Intr-authen

ppp authorization ORG-Intr-author

ppp accounting ORG-Intr-account

group-range 1 10

line 1 10

access-class 5 in

no flush-at-activation

script modem-off-hook offhook

script callback mica-callback

modem InOut

transport preferred none

transport input all

transport output telnet

autoselect during-login

autoselect ppp

I do need to run PPP but I would like not to have ability to get username: / password: prompt when dialing for example with Hyperterminal. Unfortunately if using callback script, I have to have "async mode interactive" in an interface config otherwise callback does not work.

Is there any idea how to eliminate username: prompt and be able to run PPP only but still be able to do callback ?

Thanks !

Labels:
0 Helpful
2 Accepted Solutions

Accepted Solutions

Go to solution
makchitale
Level 6
Level 6

‎06-17-2003 08:19 AM

Under the lines add "autocommand ppp"....hyperterm users will not be able to access the as5300 but will go into ppp mode (anyways this NAS is used for dial-in as well as callback).

Thanks, Mak.

View solution in original post

0 Helpful

Go to solution
tepatel
Cisco Employee
Cisco Employee

‎06-17-2003 08:21 AM

You can't supress the username and password prompt displayed in the hyperterminal with "async mode interactive". But you can block the access to router further. Instead of using "autoselect ppp" you can use "autocommand ppp" so that after successful authentication in terminal window, router will directly start PPP. Callback with that command shouldn't be a problem.

View solution in original post

0 Helpful
2 Replies 2

Go to solution
makchitale
Level 6
Level 6

‎06-17-2003 08:19 AM

Under the lines add "autocommand ppp"....hyperterm users will not be able to access the as5300 but will go into ppp mode (anyways this NAS is used for dial-in as well as callback).

Thanks, Mak.

0 Helpful

Go to solution
tepatel
Cisco Employee
Cisco Employee

‎06-17-2003 08:21 AM

You can't supress the username and password prompt displayed in the hyperterminal with "async mode interactive". But you can block the access to router further. Instead of using "autoselect ppp" you can use "autocommand ppp" so that after successful authentication in terminal window, router will directly start PPP. Callback with that command shouldn't be a problem.

0 Helpful
Customers Also Viewed These Support Documents