User Manager/PPP Example: Difference between revisions
Jump to navigation
Jump to search
mNo edit summary |
mNo edit summary |
||
Line 6: | Line 6: | ||
== PPP configuration == | == PPP configuration == | ||
We consider PPPoE server <-> PPPoE client configuration example, when PPPoE server uses remote User Manager database for PPPoE clients authentication, authorization and accounting. | We consider PPPoE server <-> PPPoE client configuration example, when PPPoE server uses remote User Manager database for PPPoE clients authentication, authorization and accounting. Both PPPoE server and PPPoE client are MikroTik routers, any other PPPoE client might be used instead. | ||
TODO | TODO | ||
Line 21: | Line 21: | ||
/ ppp set default local-address=192.168.240.1 | / ppp set default local-address=192.168.240.1 | ||
* Add radius client to consult User Manager for PPP service. | |||
/ radius add service=ppp address=y.y.y.y secret=123456 | |||
'secret' is equal to User Manager router secret. | |||
'y.y.y.y' is the User Manager router address. | |||
* Note, first local HotSpot database is consulted, then User Manager database. | |||
=== PPP client configuration === | === PPP client configuration === | ||
* Add PPPoE client to the interface | |||
/ interface pppoe-client add interface=ether1 user=MikroTik password=MikroTik service-name=MikroTik allow=pap,chap | |||
== User Manager configuration == | == User Manager configuration == | ||
TODO | TODO |
Revision as of 21:24, 1 November 2006
Introduction
User Manager might be used as remote authentication, authorization and accounting server for PPP clients Note, only PAP and CHAP authentication methods supported by User Manager now. Let's consider configuration steps for PPP and User Manager routers.
PPP configuration
We consider PPPoE server <-> PPPoE client configuration example, when PPPoE server uses remote User Manager database for PPPoE clients authentication, authorization and accounting. Both PPPoE server and PPPoE client are MikroTik routers, any other PPPoE client might be used instead.
TODO
PPP server configuration
- First, add PPPoE server to the local interface, remember that User Manager server only supports PAP and CHAP authentication methods:
/ interface pppoe-server server add interface=ether1 service-name=MikroTik one-session-per-host=yes disabled=no authentication=chap,pap
- Specify to use User Manager for PPPoE clients:
/ ppp aaa set use-radius=yes
- Set IP address of the PPPoE server, IP address might not be assigned to the interface of PPPoE server. Moreover static IP address is not recommended to use static IP addresses or DHCP on the same interfaces as PPPoE for security reasons. Non-PPPoE clients will not connect to the outer networks.
/ ppp set default local-address=192.168.240.1
- Add radius client to consult User Manager for PPP service.
/ radius add service=ppp address=y.y.y.y secret=123456
'secret' is equal to User Manager router secret. 'y.y.y.y' is the User Manager router address.
- Note, first local HotSpot database is consulted, then User Manager database.
PPP client configuration
- Add PPPoE client to the interface
/ interface pppoe-client add interface=ether1 user=MikroTik password=MikroTik service-name=MikroTik allow=pap,chap
User Manager configuration
TODO