Specifications
Configuring per-User Configuration
Configuration Examples for Per-User Configuration
DC-689
Cisco IOS Dial Technologies Configuration Guide
IP Access Lists and Static Routes Using Virtual Profiles over ISDN BRI
The following example provides configurations for the TACACS+ freeware daemon, the network access
server, and the peer router named Router1. On the TACACS+ AAA server, peer router Router1 has a
configuration that includes static routes and IP access lists.
TACACS+ Freeware Daemon Configuration File
key = tac123
user = Router1 {
global = cleartext welcome
service = ppp protocol = ip {
route#1=”10.0.0.0 255.0.0.0"
route#2=”10.1.0.0 255.0.0.0"
route#3=”10.2.0.0 255.0.0.0"
inacl#1=”deny 10.5.0.1"
}
}
Current Network Access Server Configuration
version 11.3
service timestamps debug datetime localtime
service udp-small-servers
service tcp-small-servers
!
hostname Router2
!
aaa new-model
aaa authentication ppp default tacacs+
aaa authorization network tacacs+
enable secret 5 $1$koOn$/1QAylov6JFAElxRCrL.o/
enable password lab
!
username Router1 password 7 15050E0007252621
ip host Router2 172.21.114.132
ip domain-name cisco.com
ip name-server 172.19.2.132
ip name-server 192.168.30.32
isdn switch-type basic-5ess
interface Ethernet 0
ip address 172.21.114.132 255.255.255.224
no ip mroute-cache
media-type 10BaseT
!
interface Virtual-Template1
ip unnumbered Ethernet0
no cdp enable
!
!
interface BRI0
ip unnumbered Ethernet0
no ip mroute-cache
encapsulation ppp
no ip route-cache
dialer idle-timeout 300
dialer map ip 10.5.0.1 name Router1 broadcast 61482
dialer-group 1
no fair-queue
ppp authentication chap
!
!