Cisco OL-15491-01 User Manual

Page 140

Advertising
background image

A-140

Cisco Content Services Gateway - 2nd Generation Release 2.0 Installation and Configuration Guide

OL-15491-01

Appendix A CSG2 Command Reference

ip csg radius proxy

csg-source-address

Specifies the source IP address that the CSG2 is to use when sending packets
to the RADIUS server.

The CSG2 source IP address must be unique (or the IP address-VRF name
combination must be unique, if VRF is configured).

If you want the CSG2 RADIUS proxy IP address to be a member of a CSG2
interface subnet, you must configure the CSG2 source IP address as follows:

In non-redundant configurations, you must configure the CSG2 source IP
address as a secondary IP address configured on the appropriate interface.

In redundant configurations, you must configure the CSG2 source IP
address as a standby secondary IP address on the appropriate interface.

Note

The CSG2 performs radius proxy processing only on User Datagram
Protocol (UDP) traffic that is destined for the csg-source-address. The
csg-source-address cannot be used for any other UDP communication
with the CSG2.

key

(Optional) Specifies a RADIUS key.

Note

Specify no more than one key for each CSG2 IP address.

encrypt

(Optional) Indicates how the secret-string is represented when the
configuration is displayed (for example, show run), or how it is written to
nonvolatile memory (for example, write memory).

The possible values are 0 and 7:

0—The secret-string is stored in plain text. This is the default setting.

7—The secret-string is encrypted before it is displayed or written to
nonvolatile memory.

Note

If your router is configured to encrypt all passwords, then the password
is represented as 7 followed by the encrypted text. See the Cisco IOS
service command for more details.

secret-string

(Optional) 1- to 64-character clear password value for MD5 authentication. All
characters are valid; case is significant.

The secret-string is always sent in plain text to the CSG2 module when the
configuration is downloaded.

The secret-string must match the secret that is specified on the RADIUS client
(for example, the gateway general packet radio service [GPRS] support node
[GGSN]).

vrf sub-vrf-name

(Optional) Virtual Routing and Forwarding (VRF) table which the subscriber
is to use for RADIUS communication.

Note

The VRF table name is defined using the vrf definition command in
global configuration mode. VRF table names supported by the CSG2
can be from 1 to 32 characters long, and can include uppercase or
lowercase letters, numbers, and any special characters.

The CSG2 does not support the use of the word forwarding as a valid
VRF name.

Advertising
Popular Brands
Popular manuals