Advanced
Mailing List Archive

Mailing List Archive

  1. Home >
  2. Cisco>
  3. BBA
Re: [c-nsp] LAC - Disable Accounting messages just for L2TP users
linkconnect at googlemail
Jan 24, 2009, 4:52 AM
Post #1 of 2 (3366 views)
Permalink
Hi Victor

We see the same thing here, I believe it's because of the
authen-before forward in the vpdn config but I'm unable to test
removing it at the moment as the lab is busy


I'm interested in a solution for this also.




Wayne

On Sat, Jan 24, 2009 at 8:59 AM, Victor Lyapunov
<victor.lyapunov@gmail.com> wrote:
> Hello all
>
> I am trying to perform some tests where a Cisco router takes up the
> role of a LAC, forwarding PPP calls
> to the appropriate LNS according to the domain name provided by the user.
> At the same time this LAC must be able to localy terminate PPP
> sessions offering internet services to
> subscribers. I have used a fairly simple config like the
>
> aaa group server radius SUBS
> server a.b.c.d auth-port 1812 acct-port 1813
> throttle accounting 150
> load-balance method least-outstanding
> !
> aaa authentication ppp SUBS group SUBS
> aaa authorization network SUBS
> aaa accounting network SUBS
> action-type start-stop
> aaa accounting network default none
>
> vpdn-group <l2tp-domain>
> request-dialin
> protocol l2tp
> domain <l2tp-domain>
> initiate-to ip x.x.x.x
> source-ip y.y.y.y
> local name LAC
> l2tp tunnel password 0 cisco
>
> bba-group pppoe PPPOE
> virtual-template 10
>
> interface Virtual-Template10
> ip unnumbered Loopback0
> peer default ip address pool PPP_POOL_1
> ppp authentication pap SUBS
> ppp authorization SUBS
> ppp accounting SUBS
>
>
> The problem is that for the users that are localy terminated we need
> radius accounting. On the other hand
> no accounting is required for the L2TP forwarded users. Still the
> router generated accounting Start / Stop
> messages for these VPDN users creating extra load for the radius server.
>
> Is there a way to differentiate the accounting between VPDN and localy
> terminated subscribers? Specificaly disable
> accounting for L2TP fordwarded users and at the same time use radius
> accounting for localy terminated subscribers.
>
> Any help is welcomed
> _______________________________________________
> cisco-nsp mailing list cisco-nsp@puck.nether.net
> https://puck.nether.net/mailman/listinfo/cisco-nsp
> archive at http://puck.nether.net/pipermail/cisco-nsp/
>
_______________________________________________
cisco-bba mailing list
cisco-bba@puck.nether.net
https://puck.nether.net/mailman/listinfo/cisco-bba
Re: [c-nsp] LAC - Disable Accounting messages just for L2TP users [ In reply to ]
raghujindia at gmail
Jan 24, 2009, 11:13 AM
Post #2 of 2 (3228 views)
Permalink
I think in victors vpdn configuration do not contain authen-before forward
command.Also I think this command doesnt make sense to solve the victors
issue.

On Sat, Jan 24, 2009 at 6:22 PM, Wayne Lee <linkconnect@googlemail.com>wrote:

> Hi Victor
>
> We see the same thing here, I believe it's because of the
> authen-before forward in the vpdn config but I'm unable to test
> removing it at the moment as the lab is busy
>
>
> I'm interested in a solution for this also.
>
>
>
>
> Wayne
>
> On Sat, Jan 24, 2009 at 8:59 AM, Victor Lyapunov
> <victor.lyapunov@gmail.com> wrote:
> > Hello all
> >
> > I am trying to perform some tests where a Cisco router takes up the
> > role of a LAC, forwarding PPP calls
> > to the appropriate LNS according to the domain name provided by the user.
> > At the same time this LAC must be able to localy terminate PPP
> > sessions offering internet services to
> > subscribers. I have used a fairly simple config like the
> >
> > aaa group server radius SUBS
> > server a.b.c.d auth-port 1812 acct-port 1813
> > throttle accounting 150
> > load-balance method least-outstanding
> > !
> > aaa authentication ppp SUBS group SUBS
> > aaa authorization network SUBS
> > aaa accounting network SUBS
> > action-type start-stop
> > aaa accounting network default none
> >
> > vpdn-group <l2tp-domain>
> > request-dialin
> > protocol l2tp
> > domain <l2tp-domain>
> > initiate-to ip x.x.x.x
> > source-ip y.y.y.y
> > local name LAC
> > l2tp tunnel password 0 cisco
> >
> > bba-group pppoe PPPOE
> > virtual-template 10
> >
> > interface Virtual-Template10
> > ip unnumbered Loopback0
> > peer default ip address pool PPP_POOL_1
> > ppp authentication pap SUBS
> > ppp authorization SUBS
> > ppp accounting SUBS
> >
> >
> > The problem is that for the users that are localy terminated we need
> > radius accounting. On the other hand
> > no accounting is required for the L2TP forwarded users. Still the
> > router generated accounting Start / Stop
> > messages for these VPDN users creating extra load for the radius server.
> >
> > Is there a way to differentiate the accounting between VPDN and localy
> > terminated subscribers? Specificaly disable
> > accounting for L2TP fordwarded users and at the same time use radius
> > accounting for localy terminated subscribers.
> >
> > Any help is welcomed
> > _______________________________________________
> > cisco-nsp mailing list cisco-nsp@puck.nether.net
> > https://puck.nether.net/mailman/listinfo/cisco-nsp
> > archive at http://puck.nether.net/pipermail/cisco-nsp/
> >
> _______________________________________________
> cisco-bba mailing list
> cisco-bba@puck.nether.net
> https://puck.nether.net/mailman/listinfo/cisco-bba
>

©2024 GT.net. A Gossamer Threads company.
5th Floor, 455 Granville St., Vancouver, BC V6C 1T1, Canada | Legal