June 30, 2006

Appendix A: SG-1Vendor-Specific Attributes

route:acl-tcp-nat-redirect attribute

The route:acl-tcp-nat-redirect attribute defines a destination IP address to which the system should TCP redirect all session packets. In this case the system should perform NAT redirection for all TCP packets that meet the access- list definition (replacing the destination IP for upstream traffic and replacing it back for the downstream traffic). The network address translation is performed on the last destination of an upstream packet belonging to this access list flow. This sub-attribute is operated in hierarchy mode and supports both user and service levels.

General:

Operation Mode:

Access-Accept message

 

Service-Accept message

Vendor-type:

75

Vendor-length =

2 + 7-15 + attribute length

Format:

adc-avpair = "route:acl-tcp-nat-redirect=<access list name>;<IP address>",

Example:

adc-avpair = "route:acl-tcp-nat-redirect=SMTP;192.168.1.4”

VPDN GROUP

vpdn:tunnel-id attribute

This attribute defines the tunnel ID, used for LAC purpose. This attribute is mandatory for opening a tunnel session.

General:

Operation Mode:

Access- Accept message

Vendor-type: 80

Vendor-length = 2 + name length + (1 - 64)

Format:

adc-avpair = "vpdn:tunnel-id=<username>",

Example:

adc-avpair = "vpdn:tunnel-id=test",

vpdn:l2tp-tunnel-password attribute

This Attribute contains a password to be used to authenticate to a remote server. This attribute is mandatory for opening a tunnel session.

SG1-UM-8500-03

A-29

Page 187
Image 187
ADC SG-1 user manual Vpdn Group, Adc-avpair = vpdntunnel-id=username, Adc-avpair = vpdntunnel-id=test