|
Титла: Freeradius и IPpool Публикувано от: rammstein в May 16, 2012, 10:22 Здравейте, искам да ви попитам за някаква идея, относно това как да пусна изтеклите потребители (да не ги reject-ва) да ги цопва в друг pool , в който да нямат интернет ?
Използвам Freeradius 2.1.10 + mysql , към който закачам Mikrotik-а. Благодаря ви предварително . :) Титла: Re: Freeradius и IPpool Публикувано от: 10101 в May 16, 2012, 17:18 ХМ не съм сигурен дали съм те разбрал правилно.
Но помисли над следното: Ако имаш атрибут Expiration и стойност при достигане на датата ще отказва логване.. .. разтикваш стойноста и натикваш потребители с атрибут filter-id = stoped Mikrotik работи с този атрибут и там ги чака адрес лист с fake адреси и подходящ tc control примерно 128Кбс Титла: Re: Freeradius и IPpool Публикувано от: rammstein в May 16, 2012, 21:21 ХМ не съм сигурен дали съм те разбрал правилно.Правилно си ме разбрал . :) Може ли да ми дадеш някакъв пример ? Титла: Re: Freeradius и IPpool Публикувано от: 10101 в May 17, 2012, 15:55 ХМ не съм сигурен дали съм те разбрал правилно.Правилно си ме разбрал . :) Пример за трафик контрол ще стигне ли? Титла: Re: Freeradius и IPpool Публикувано от: rammstein в May 17, 2012, 16:33 За трафик контрола ми е ясно как ще стане . Исках да ми пуснеш един dump на Mikrotik-а и SQL-а на freeradius за да ми стане по-ясно. :)
Титла: Re: Freeradius и IPpool Публикувано от: 10101 в May 17, 2012, 17:33 add chain=ppp-stoped action=add-src-to-address-list address-list=stoped address-list-timeout=6h comment="" disabled=no
add list=stoped address=10.50.0.0/24 comment="" disabled=no add name="stoped" parent=pppoe-all-down packet-mark="" limit-at=0 queue=wireless-default priority=8 max-limit=0 burst-limit=0 burst-threshold=0 burst-time=0s \ disabled=no add name="stoped-int-down" parent=stoped packet-mark=stoped-inter-down limit-at=0 queue=stoped-inter-down priority=5 max-limit=0 burst-limit=0 burst-threshold=0 \ burst-time=0s disabled=no add name="stoped-bg-down" parent=stoped packet-mark=stoped-bg-down limit-at=0 queue=stoped-bg-down priority=5 max-limit=0 burst-limit=0 burst-threshold=0 burst-time=0s \ disabled=no add name="stoped-up" parent=pppoe-all-up packet-mark="" limit-at=0 queue=wireless-default priority=8 max-limit=0 burst-limit=0 burst-threshold=0 burst-time=0s \ disabled=no add name="stoped-int-up" parent=stoped-up packet-mark=stoped-inter-up limit-at=0 queue=stoped-inter-up priority=5 max-limit=0 burst-limit=0 burst-threshold=0 burst-time=0s \ disabled=no add name="stoped-bg-up" parent=stoped-up packet-mark=stoped-bg-up limit-at=0 queue=stoped-bg-up priority=5 max-limit=0 burst-limit=0 burst-threshold=0 burst-time=0s disabled=no add name="stoped" parent=pppoe-all-down packet-mark="" limit-at=0 queue=wireless-default priority=8 max-limit=0 burst-limit=0 burst-threshold=0 burst-time=0s \ disabled=no add name="stoped-int-down" parent=stoped packet-mark=stoped-inter-down limit-at=0 queue=stoped-inter-down priority=5 max-limit=0 burst-limit=0 burst-threshold=0 \ burst-time=0s disabled=no add name="stoped-bg-down" parent=stoped packet-mark=stoped-bg-down limit-at=0 queue=stoped-bg-down priority=5 max-limit=0 burst-limit=0 burst-threshold=0 burst-time=0s \ disabled=no add name="stoped-up" parent=pppoe-all-up packet-mark="" limit-at=0 queue=wireless-default priority=8 max-limit=0 burst-limit=0 burst-threshold=0 burst-time=0s \ disabled=no add name="stoped-int-up" parent=stoped-up packet-mark=stoped-inter-up limit-at=0 queue=stoped-inter-up priority=5 max-limit=0 burst-limit=0 burst-threshold=0 burst-time=0s \ disabled=no add name="stoped-bg-up" parent=stoped-up packet-mark=stoped-bg-up limit-at=0 queue=stoped-bg-up priority=5 max-limit=0 burst-limit=0 burst-threshold=0 burst-time=0s disabled=no dd name="stoped-inter-down" kind=pcq pcq-rate=640000 pcq-limit=50 pcq-classifier=dst-address pcq-total-limit=2000 add name="stoped-inter-up" kind=pcq pcq-rate=640000 pcq-limit=50 pcq-classifier=src-address pcq-total-limit=2000 add name="stoped-bg-down" kind=pcq pcq-rate=1024000 pcq-limit=50 pcq-classifier=dst-address pcq-total-limit=2000 add name="stoped-bg-up" kind=pcq pcq-rate=1024000 pcq-limit=50 pcq-classifier=src-address pcq-total-limit=2000 add chain=forward in-interface=wan tos=xy dst-address-list=stoped action=mark-connection new-connection-mark=stoped-inter passthrough=yes comment="" disabled=no add chain=forward in-interface=wan connection-mark=stoped-inter tos=xy dst-address-list=stoped action=mark-packet new-packet-mark=stoped-inter-down passthrough=yes \ comment="" disabled=no add chain=prerouting in-interface=!wan connection-mark=stoped-inter src-address-list=stoped action=mark-packet new-packet-mark=stoped-inter-up passthrough=no comment="" \ disabled=no add chain=forward in-interface=wan tos=yx dst-address-list=stoped action=mark-connection new-connection-mark=stoped-bg passthrough=yes comment="" disabled=no add chain=forward in-interface=wan connection-mark=stoped-bg tos=yx dst-address-list=stoped action=mark-packet new-packet-mark=stoped-bg-down passthrough=yes comment="" \ disabled=no add chain=prerouting in-interface=!wan connection-mark=stoped-bg src-address-list=stoped action=mark-packet new-packet-mark=stoped-bg-up passthrough=no comment="" Това е всичко за pppoe-server-a. За базата... както си го организираш тоест някакво query което да маха expiration-a, да вкарва filter-id със стойност stoped |