ISG

نسخهٔ ‏۳۰ ژوئن ۲۰۱۵، ساعت ۱۴:۳۸

محتویات

۱ ISG service
- ۱.۱ Netwotk config
- ۱.۲ Interface config

ISG service

مقدمه و توضیحات سرویس

Netwotk config

 ###############################
 #       AAA configuration     #
 ###############################
 aaa authentication ppp ibs group radius
 aaa authorization network default group radius 
 aaa authorization network ibs group radius 
 aaa authorization subscriber-service default local group radius 
 aaa authorization subscriber-service ibs local group radius 
 aaa accounting delay-start
 aaa accounting update periodic 1
 aaa accounting network default start-stop group radius
 aaa accounting network ibs start-stop group radius
 ####################
 #    POD - COA     #
 ####################
 aaa server radius dynamic-author
 client [ Accounting server's IP address ]
 server-key [ Secret Key ]
 auth-type any

 ###############################
 #     RADIUS configuration    #
 ###############################
 radius-server attribute 44 include-in-access-req
 radius-server attribute 8 include-in-access-req
 radius-server attribute 32 include-in-access-req 
 radius-server attribute 32 include-in-accounting-req 
 radius-server attribute 55 include-in-acct-req
 radius-server attribute nas-port format d
 radius-server host [ Accounting server's IP address ] auth-port 1812 acct-port 1813 key [ Secret Key ]
 radius-server source-ports extended
 radius-server retransmit 10
 radius-server timeout 10
 radius-server vsa send cisco-nas-port
 radius-server vsa send accounting
 radius-server vsa send authentication

 ###############################
 #       BBA configuration     #
 ###############################
 bba-group pppoe global
 virtual-template 1
 mac-address autoselect
 sessions per-mac limit 1
 sessions per-vlan limit 10000
 sessions per-mac throttle 2 30 40
 sessions auto cleanup

 #############################################
 #       Virtual Template configuration      #
 #############################################
 interface Loopback10
 ip address [ An IP !! ] [It's netmask !!]
 !
 interface Virtual-Template1
 ip unnumbered Loopback10
 ip tcp adjust-mss 1436
 ip policy route-map failed
 no logging event link-status
 peer default ip address pool tabriz
 keepalive 10 3
 ppp authentication pap ibs
 ppp authorization ibs
 ppp accounting ibs
 service-policy type control ISG

 ###################################
 #       IP Pool configuration     #
 ###################################
 ip local pool [ Pool's name ] [ Start From ] [ Ends to ]
 ip forward-protocol nd

 ###################################
 #     Interface configuration     #
 ###################################
 interface GigabitEthernet0/1.1275
 description [ As descriptive as possible !!! ]
 encapsulation dot1Q 1275
 pppoe enable group global

 ###################################
 #      Services configurations    #
 ###################################
 policy-map type control ISG
 class type control always event credit-exhausted
 1 service-policy type service name FAILED

 ######################
 #   Sample Service   #
 ######################
 ip access-list extended SAMPLE_SERVICE
  permit ip 192.168.0.0 0.0.0.255 any
 permit ip any 192.168.0.0 0.0.0.255
 !
 !
 class-map type traffic match-any SAMPLE_SERVICE
 match access-group output name SAMPLE_SERVICE
 match access-group input name SAMPLE_SERVICE
 !
 !
 policy-map type service SAMPLE_SERVICE
 10 class type traffic SAMPLE_SERVICE
 accounting aaa list ibs
 police input 2000000
 police output 2000000
 !

 #################################
 #	Filter Failed-Users     #
 #################################
 route-map failed permit 10
 match ip address 10
 set ip next-hop 10.10.101.111
 !

Interface config

تنظیمات charge

ISG

نسخهٔ ‏۳۰ ژوئن ۲۰۱۵، ساعت ۱۴:۳۸

محتویات

ISG service

Netwotk config

Interface config

ابزارهای شخصی

گویش‌ها

فضاهای نام

جستجو

عملکردها

بازدیدها

گشتن

جعبه‌ابزار