Cisco 10000 User Manual

16-49

Cisco 10000 Series Router Software Configuration Guide

OL-2226-23

Chapter 16 Configuring RADIUS Features

Extended NAS-Port-Type and NAS-Port Support

You can override the NAS-Port-Type configured globally on the router at an interface or subinterface
level. To override all global options on how the Extended NAS-Port-Type attribute is sent on any interfaces
or subinterfaces such as for Ethernet, VLAN, Q-in-Q, VC, or VC ranges, enter the following commands
in the PVC submode or Ethernet subinterface mode (beginning in global configuration mode):

Verifying Extended NAS-Port-Type and NAS-Port-ID Attributes Support

To verify the Extended NAS-Port-Type and NAS-Port-ID Attributes Support feature, enter the following
command in privileged EXEC mode:

The following example displays the current configuration of RADIUS command output, where you have
enabled the extended NAS-Port-Types. You can use delimiting characters to display only the relevant
parts of the configuration.

Router# show run | inc radius

aaa authentication ppp default group radius

aaa authorization network default group radius

aaa accounting network default start-stop group radius

radius-server attribute 61 extended

radius-server attribute nas-port format e SSSSAPPPUUUUUUUUUUUUUUUUUUUUUUUU

Command

Purpose

Step 1

Router(config)# interface atm 5/0/0.1

Enters ATM subinterface mode.

Step 2

Router(config-subif)# pvc 1/33

Enters PVC subinterface mode.

Step 3

Router(config-if-atm-vc)# radius

attribute nas-port-type

[value]

To set a different extended NAS-Port-Type value for an interface
or subinterface, select a value for a port type to override the
NAS-Port type configured globally. This feature allows for
further differentiation of different customer usage.

Select a value for NAS-Port-Type. Value can be any number,
0-2147483647, chosen by the customer. In particular,
customizing your own value is useful when you need to
differentiate the NAS-Port-Type based on which type of end
client is actually using the port. For example if you want to track
mobile clients behind a specific PVC, you can define your own
NAS-Port-Type for mobile clients.

Note

You must choose a number within the range 1-40 for
value if you wish to set a different customized extended
NAS-Port-Type value and do that in conjunction with
configuring an extended specific service port type (using
the “format e type” command). Choosing a number
outside that range will cause the default NAS-port format
e string to be used to configure the NAS-Port value that is
sent for that session.

Command

Purpose

Router# show running-config

Displays the current configuration of the router. Check the output
of this command to confirm the configuration.