Last active
February 15, 2026 21:05
-
-
Save marrold/10cb3670e93ed7b77e4bc340e0342e37 to your computer and use it in GitHub Desktop.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Cisco Config | |
| ! | |
| aaa new-model | |
| ! | |
| aaa authentication login default local | |
| aaa authentication enable default enable | |
| aaa authentication ppp default group radius | |
| aaa authorization console | |
| aaa authorization exec default local if-authenticated | |
| aaa authorization network default group radius | |
| ! | |
| radius server freeradius | |
| address ipv4 10.0.144.4 auth-port 1812 acct-port 1813 | |
| key 7 12090404011C03162E | |
| ! | |
| vpdn enable | |
| ! | |
| ! | |
| ! This fixes a bug / interoperability issue with a Mikrotik acting as an LNS. | |
| ! I documented it here https://www.marrold.co.uk/2021/12/mikrotik-routeros-received-unsupported.html | |
| ! It seems you could also just use ROS 7, which everyone should be by now... | |
| ! | |
| interface Group-Async0 | |
| ppp pfc local forbid | |
| ! Other Group-Async0 things here | |
| ! | |
| # Radius config | |
| Radius response probably looks something like: | |
| Service-Type: Framed User | |
| Cisco-AVPair: vpdn:ip-address=10.10.10.10 | |
| Cisco-AVPair: vpdn:tunnel-type=l2tp | |
| Cisco-AVPair: vpdn:l2tp-tunnel-password=secret |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment