Technical Documentation

Example: Subscriber Secure Policy Mirroring Using RADIUS

This example shows a subscriber secure policy mirroring configuration that uses RADIUS. The configuration captures and sends information for a subscriber and to a mediation device defined on the RADIUS server.

system {ports {console log-out-on-disconnect;}services {dhcp-local-server {pool-match-order {external-authority;ip-address-first;option-82;}authentication {password myPassword;username-include {user-prefix BSMITH;}}group southwest25 {interface ge-1/0/0.100;}}}}interfaces {ge-1/0/0 {flexible-vlan-tagging;unit 100 {proxy-arp;vlan-id 100;family inet {unnumbered-address lo0.0 preferred-source-address192.168.25.2;}}}lo0 {unit 0 {family inet {address 192.168.25.2/32;}}}}snmp {community oslo {authorization read-only;clients {192.168.35.225/32;}}trap-group oslo {version v2;targets {192.168.35.225;}}}access {radius-server {192.168.11.178 secret " myRadiusSecret-1";192.168.35.225 {port 1812;secret "myRadiusSecret-2";}}profile myProf1 {authentication-order radius;radius {authentication-server 192.168.35.225;accounting-server 192.168.11.178;}}address-assignment {pool poolA {family inet {network 192.168.42.0/8;range limited {low 192.168.42.10;high 192.168.42.254;}}}}}chassis {fpc 1 {pic 1 {tunnel-services {bandwidth 1g;}}}}services {radius-flow-tap {traceoptions {file myFile-20;}source-ipv4-address 192.168.200.1;interfaces {vt-1/1/10.0;}}}access-profile myProf1;

Published: 2010-04-15