Appendix A CSG2 Command Reference

ip csg radius proxy

 

 

 

 

 

csg-source-address

Specifies the source IP address that the CSG2 is to use when sending packets

 

 

 

 

 

 

to the RADIUS server.

 

 

 

 

 

 

The CSG2 source IP address must be unique (or the IP address-VRF name

 

 

 

 

 

 

combination must be unique, if VRF is configured).

 

 

 

 

 

 

If you want the CSG2 RADIUS proxy IP address to be a member of a CSG2

 

 

 

 

 

 

interface subnet, you must configure the CSG2 source IP address as follows:

 

 

 

 

 

 

In non-redundant configurations, you must configure the CSG2 source IP

 

 

 

 

 

 

address as a secondary IP address configured on the appropriate interface.

 

 

 

 

 

 

In redundant configurations, you must configure the CSG2 source IP

 

 

 

 

 

 

address as a standby secondary IP address on the appropriate interface.

 

 

 

 

 

 

Note The CSG2 performs radius proxy processing only on User Datagram

 

 

 

 

 

 

Protocol (UDP) traffic that is destined for the csg-source-address. The

 

 

 

 

 

 

csg-source-addresscannot be used for any other UDP communication

 

 

 

 

 

 

with the CSG2.

 

 

 

 

 

 

 

 

 

 

 

 

key

(Optional) Specifies a RADIUS key.

 

 

 

 

 

 

Note Specify no more than one key for each CSG2 IP address.

 

 

 

 

 

 

 

 

 

 

 

 

encrypt

(Optional) Indicates how the secret-stringis represented when the

 

 

 

 

 

 

configuration is displayed (for example, show run), or how it is written to

 

 

 

 

 

 

nonvolatile memory (for example, write memory).

 

 

 

 

 

 

The possible values are 0 and 7:

 

 

 

 

 

 

0—The secret-stringis stored in plain text. This is the default setting.

 

 

 

 

 

 

7—The secret-stringis encrypted before it is displayed or written to

 

 

 

 

 

 

nonvolatile memory.

 

 

 

 

 

 

Note If your router is configured to encrypt all passwords, then the password

 

 

 

 

 

 

is represented as 7 followed by the encrypted text. See the Cisco IOS

 

 

 

 

 

 

service command for more details.

 

 

 

 

 

 

 

 

 

 

 

 

secret-string

(Optional) 1- to 64-character clear password value for MD5 authentication. All

 

 

 

 

 

 

characters are valid; case is significant.

 

 

 

 

 

 

The secret-stringis always sent in plain text to the CSG2 module when the

 

 

 

 

 

 

configuration is downloaded.

 

 

 

 

 

 

The secret-stringmust match the secret that is specified on the RADIUS client

 

 

 

 

 

 

(for example, the gateway general packet radio service [GPRS] support node

 

 

 

 

 

 

[GGSN]).

 

 

 

 

 

 

 

 

 

 

 

 

vrf sub-vrf-name

(Optional) Virtual Routing and Forwarding (VRF) table which the subscriber

 

 

 

 

 

 

is to use for RADIUS communication.

 

 

 

 

 

 

 

 

 

 

 

 

 

Defaults

 

 

 

The secret-stringis stored in plain text.

 

 

 

 

 

The csg-source-address is set to csg-address.

 

 

 

 

 

If no VRF table is specified for the CSG2, the CSG2 uses the global routing table for RADIUS

 

 

 

 

 

communication.

 

 

 

 

 

 

 

If no VRF table is specified for the RADIUS server, the RADIUS server uses the global routing table for

 

 

 

 

 

RADIUS communication.

 

 

 

 

 

If no VRF table is specified for the subscriber, the subscriber uses the global routing table for RADIUS

 

 

 

 

 

communication.

 

 

 

 

 

Cisco Content Services Gateway - 2nd Generation Release 2.0 Installation and Configuration Guide

 

 

 

 

 

 

 

 

 

 

 

 

A-132

 

 

 

 

OL-15491-01

 

 

 

 

 

 

 

Page 131 Page 133
Page 132
Image 132
Cisco Systems OL-15491-01 appendix Csg-source-address is set to csg-address, 132
Page 131 Page 133
Top Page Image Contents