Date: Wed, 2 Jul 1997 17:39:31 +0200 From: "Jouke Dijkstra" <jouke@epsilon.nl> To: "Aleksei Davidenko" <aleksei@anet.ee>, "Penisoara Adrian" <ady@warp.starnets.ro> Cc: <freebsd-isp@FreeBSD.ORG> Subject: Re: Cisco 2509 and Tacacs+ Filtering Message-ID: <199707021543.RAA27973@skipper.epsilon.nl>
next in thread | raw e-mail | index | archive | help
>> Can I in TACACS+ server or in FreeBSD deny some
>> TCP/IP or UDP services for modem accounts through Cisco 2509 RAS ?
>Good question, I was about to ask this too, I'll need that answer myself
>too...
>
> How about some guru to shed some light on this item ? Please ...
> And further more, please indicate me some links to documentation related
>to TACAS+ & Cisco Access router. Thanks.
>
Well, I don't think I can call myself a guru, but the following might be
of your interest, a little tweak of the configuration I used once:
user = user
{
member = mail_only
chap = cleartext password
}
group = mail_only
{
member = default
service = ppp protocol = ip {
inacl=101
outacl=102
}
}
group = default
{
your default stuff goes here
}
This shows only a very limited part of the posibilities of tac+, but I
think
this is the part you're interested in.
If you have any other questions to ask concerning tacacs+, don't feel
afraid to ask!
- Jouke Dijkstra
bART System Administrator
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199707021543.RAA27973>