Community discussions

MUM Europe 2020
 
jurisv
just joined
Topic Author
Posts: 19
Joined: Thu May 05, 2005 5:27 pm

pptp restriction

Mon May 14, 2007 3:35 pm

Is there a way to limit ppp secret login subnet (not ip)?
For example user 'usr1' can login only from 10.10.1.0/24 and 'usr2' only from 10.10.2.0/24
 
savage
Forum Guru
Forum Guru
Posts: 1220
Joined: Mon Oct 18, 2004 12:07 am
Location: Cape Town, South Africa
Contact:

Wed May 16, 2007 7:42 pm

Yes, use Radius, and then look at the Calling-Station-Id attribute.
Regards,
Chris
 
jurisv
just joined
Topic Author
Posts: 19
Joined: Thu May 05, 2005 5:27 pm

Wed May 16, 2007 8:01 pm

from mt manual:
Calling-Station-Id - PPPoE and HotSpot- client MAC address in capital letters; PPTP and L2TP - client public IP address; ISDN - client MSN

i need to limit by subnet not ip adress.
 
User avatar
tneumann
Member
Member
Posts: 394
Joined: Sat Apr 16, 2005 6:38 pm
Location: Germany

Wed May 16, 2007 8:17 pm

jurisv,

you do not login via PPP from some IP address (except for PPTP). Are you talking about PPTP or are you talking about PPPoE? For PPPoE your question does not make sense.

--Tom
 
savage
Forum Guru
Forum Guru
Posts: 1220
Joined: Mon Oct 18, 2004 12:07 am
Location: Cape Town, South Africa
Contact:

Wed May 16, 2007 8:21 pm

from mt manual:
Calling-Station-Id - PPPoE and HotSpot- client MAC address in capital letters; PPTP and L2TP - client public IP address; ISDN - client MSN

i need to limit by subnet not ip adress.
I'm very aware of that yes... But surely, a IP address is either part of, or not part of a Subnet? If Calling-Station-Id = a.b.c.d, deny access. If Calling-Station-Id = x.x.x.x, allow access. It's not really that hard is it?

Oh well...
Regards,
Chris
 
jurisv
just joined
Topic Author
Posts: 19
Joined: Thu May 05, 2005 5:27 pm

Wed May 16, 2007 8:28 pm

i'm talking about pptp. limit by adress i alredy can without using radius....

Who is online

Users browsing this forum: shareefkhan and 112 guests