09-20-2007 06:12 AM
Is it possible to configure a router with local user database and provide static addresses to remote dialup clients based on username in the local database. This is a standalone 2800 solution with primary rate ISDN and Digital onboard modem module.
I know this is possible using external Radius / Tacacs
Thanks & regards,
Mark
09-24-2007 11:04 AM
You can have them authenticate in tty mode and then start autocommand ppp for each different user as optionfor username command, for each specifying the ip address to use.
Hope this helps, please rate post if it does!
09-25-2007 12:44 AM
Hi,
Thanks for your feedback. Does this mean the client would have to bring up their terminal window as part of their windows setup to authenticate first. Not sure if the client will go for this one..
Thanks,
Mark
09-25-2007 11:36 AM
Yes. Then I don't know of a way of doing it w/o radius or tacacs.
09-25-2007 11:44 AM
Here are two ways to configure a router locally with per-user
IP address assignment based upon authenticated peer name:
1. configure a separate dialer profile for each user. E.g.
interface dialer 5
dialer pool 1
dialer remote-name JONES
peer default ip address 10.1.2.3
configure your group-async as "dialer in-band" and "dialer pool-member 5".
2. configure your async interfaces for legacy dialer, and user dialer maps
interface group-async1
dialer in-band
dialer map ip 10.1.2.3 name JONES
P.S. Hi Paolo - it's been awhile, hope you're doing well!
09-25-2007 11:46 AM
Given that you have both ISDN and modem users,
if you use method 2, do it this way:
interface serial0:23
dialer rotary 1
interface serial 1:23
dialer rotary 1
interface group-async 1
dialer rotary 1
interface dialer 1
dialer map ip 10.1.2.3 name JONES
09-26-2007 12:50 AM
Thanks guys.... I have another question about allocating an IP address on the same range as the LAN side.
e.g. LAN address of the router 10.0.0.1 255.255.0.0 the client must have e.g. 10.0.0.10 /32 etc.
Has anyone done this before ?
Thanks,
09-26-2007 05:13 AM
Sure, just unnumber the dialer interface(s) to
the LAN interface. E.g.
interface dialer 1
ip unnumbered fastethernet0
It will then work fine for the dialer's peers to
get addresses from the LAN subnet. When PPP IPCP is
negotiated, a /32 route to the peer will automatically
be installed in the router's routing table.
09-26-2007 06:25 AM
Thanks Aaron,
Wilk chck this out at the weekend...
Best regards,
Mark
09-26-2007 01:47 AM
Great suggestions Aaron.
All is well. we still here making things work.
best of luck!
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: