Date: Sat, 7 Feb 1998 14:43:54 +1100 (EST) From: "Daniel O'Callaghan" <danny@panda.hilink.com.au> To: David Babler <dbabler@Rigel.orionsys.com> Cc: freebsd-isp@FreeBSD.ORG Subject: Re: User PPP/PAP & IPs Message-ID: <Pine.BSF.3.91.980207144033.294o-100000@panda.hilink.com.au> In-Reply-To: <Pine.BSF.3.96.980206164531.11157H-100000@Rigel.orionsys.com>
index | next in thread | previous in thread | raw e-mail
> 1. allow only specific PPP/PAP logins from specific users on > specific lines and deny all others, even if they have valid > passwords. (e.g. dedicated-line customers) You'll have to write an ip-up script to disconnect unauthorised attempts. > 2. allow PPP/PAP dialups on other ports and have them recognized > as either "normal" accounts, which get a dynamic IP (or a fixed IP > for specific ports) or "static IP" accounts and issue them a > user-specific static IP. It's acceptable for the static IP users' > passwords to be in ppp.secret but I'd prefer the "normal" > users' passwords to come from passwd from an administrative > standpoint. Add the following to /etc/ppp/pap-secrets me * "" :203.1.2.4 friend * "" :203.1.2.5 * * "" The last line allows the IP address specified in options.ttyXn to be used, the first two override options.ttyXn for the remote IP address. Dannyhome | help
Want to link to this message? Use this
URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.3.91.980207144033.294o-100000>