Date: Sat, 7 Feb 1998 14:43:54 +1100 (EST) From: "Daniel O'Callaghan" <danny@panda.hilink.com.au> To: David Babler <dbabler@Rigel.orionsys.com> Cc: freebsd-isp@FreeBSD.ORG Subject: Re: User PPP/PAP & IPs Message-ID: <Pine.BSF.3.91.980207144033.294o-100000@panda.hilink.com.au> In-Reply-To: <Pine.BSF.3.96.980206164531.11157H-100000@Rigel.orionsys.com>
next in thread | previous in thread | raw e-mail | index | archive | help
> 1. allow only specific PPP/PAP logins from specific users on > specific lines and deny all others, even if they have valid > passwords. (e.g. dedicated-line customers) You'll have to write an ip-up script to disconnect unauthorised attempts. > 2. allow PPP/PAP dialups on other ports and have them recognized > as either "normal" accounts, which get a dynamic IP (or a fixed IP > for specific ports) or "static IP" accounts and issue them a > user-specific static IP. It's acceptable for the static IP users' > passwords to be in ppp.secret but I'd prefer the "normal" > users' passwords to come from passwd from an administrative > standpoint. Add the following to /etc/ppp/pap-secrets me * "" :203.1.2.4 friend * "" :203.1.2.5 * * "" The last line allows the IP address specified in options.ttyXn to be used, the first two override options.ttyXn for the remote IP address. Danny
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.3.91.980207144033.294o-100000>