<html>
<head>
<meta content="text/html; charset=windows-1252"
http-equiv="Content-Type">
</head>
<body bgcolor="#FFFFFF" text="#000000">
This was my thought, i've seen instances where a RADIUS 'proxy' is
handy to do these kind of re-writes and other things. Should be very
easy and simple (but a shout-out to Radiator, non-free though but
very flexible and scriptable)<br>
<br>
<div class="moz-cite-prefix">On 24/08/16 10:39, Damien Gardner Jnr
wrote:<br>
</div>
<blockquote
cite="mid:CAPrfDLU3-N-c03u6bDg7x8pUPfCMqAJfzEAKo7M8Kfx_m=ZzWg@mail.gmail.com"
type="cite">
<div dir="ltr">What about putting your own FreeRadius server in
front of the vendor one, and pop together some quick functions
to re-map the circuit ID into the username before passing the
query on to the vendor FreeRadius? :)</div>
<div class="gmail_extra"><br>
<div class="gmail_quote">On 24 August 2016 at 10:35, Philip
Loenneker <span dir="ltr"><<a moz-do-not-send="true"
href="mailto:Philip.Loenneker@tasmanet.com.au"
target="_blank">Philip.Loenneker@tasmanet.com.au</a>></span>
wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0
.8ex;border-left:1px #ccc solid;padding-left:1ex">
<div link="blue" vlink="purple" lang="EN-AU">
<div>
<p class="MsoNormal"><span
style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:#1f497d">Hi
Craig,</span></p>
<p class="MsoNormal"><span
style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:#1f497d"> </span></p>
<p class="MsoNormal"><span
style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:#1f497d">I
have looked at that option, but because FreeRADIUS
is integrated with our customer management product,
the vendor would have to implement that change. I
asked them about it, and they said it is not a
priority because they see it as an edge case, not a
common feature their customers are after.</span></p>
<span class="">
<p class="MsoNormal"><span
style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:#1f497d"> </span></p>
<div>
<p class="MsoNormal"><span
style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:#1f497d"
lang="EN-US">Regards,</span></p>
<p class="MsoNormal"><b><span
style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:#1f497d"
lang="EN-US">Philip Loenneker | Network
Engineer</span></b><b><span
style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:#ed7d31"
lang="EN-US"> | TasmaNet</span></b></p>
<p class="MsoNormal"><span
style="font-size:10.0pt;font-family:"Calibri",sans-serif;color:gray"
lang="EN-US">40-50 Innovation Drive, Dowsing
Point, Tas 7010, Australia</span></p>
<p class="MsoNormal"><span
style="font-size:10.0pt;font-family:"Calibri",sans-serif;color:gray"
lang="EN-US">P: 03 6165 2542 | M: 0404 097 816</span></p>
<p class="MsoNormal"><span
style="font-size:10.0pt;font-family:"Calibri",sans-serif;color:#1f497d"
lang="EN-US"><a moz-do-not-send="true"
href="mailto:philip.loenneker@tasmanet.com.au"
target="_blank"><span style="color:#0563c1">philip.loenneker@tasmanet.com.<wbr>au</span></a></span></p>
<p class="MsoNormal"><u><span
style="font-size:10.0pt;font-family:"Calibri",sans-serif;color:#ed7d31"><a
moz-do-not-send="true"
href="http://www.tasmanet.com.au/"
target="_blank"><span style="color:#0563c1">www.tasmanet.com.au</span></a></span></u></p>
</div>
<p class="MsoNormal"><span
style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:#1f497d"> </span></p>
</span>
<div>
<div style="border:none;border-top:solid #e1e1e1
1.0pt;padding:3.0pt 0cm 0cm 0cm">
<p class="MsoNormal"><b><span
style="font-size:11.0pt;font-family:"Calibri",sans-serif"
lang="EN-US">From:</span></b><span
style="font-size:11.0pt;font-family:"Calibri",sans-serif"
lang="EN-US"> AusNOG [mailto:<a
moz-do-not-send="true"
href="mailto:ausnog-bounces@lists.ausnog.net"
target="_blank">ausnog-bounces@lists.<wbr>ausnog.net</a>]
<b>On Behalf Of </b>Craig Askings<br>
<b>Sent:</b> Wednesday, 24 August 2016 10:31 AM<br>
<b>To:</b> <a moz-do-not-send="true"
href="mailto:ausnog@lists.ausnog.net"
target="_blank">ausnog@lists.ausnog.net</a><br>
<b>Subject:</b> Re: [AusNOG] DHCP server
suitable for NBN</span></p>
</div>
</div>
<div>
<div class="h5">
<p class="MsoNormal"> </p>
<p class="MsoNormal">I've not tried it in that
particular configuration, but Freeradius can act
directly as a DHCP server.</p>
<div>
<p class="MsoNormal"> </p>
</div>
<div>
<p class="MsoNormal"> </p>
<div>
<blockquote
style="margin-top:5.0pt;margin-bottom:5.0pt">
<div>
<p class="MsoNormal">On 24 Aug 2016, at 9:53
AM, Philip Loenneker <<a
moz-do-not-send="true"
href="mailto:Philip.Loenneker@tasmanet.com.au"
target="_blank">Philip.Loenneker@tasmanet.<wbr>com.au</a>>
wrote:</p>
</div>
<p class="MsoNormal"> </p>
<div>
<div>
<p class="MsoNormal"><span
style="font-size:11.0pt;font-family:"Calibri",sans-serif">Hi
all,</span></p>
</div>
<div>
<p class="MsoNormal"><span
style="font-size:11.0pt;font-family:"Calibri",sans-serif"> </span></p>
</div>
<div>
<p class="MsoNormal"><span
style="font-size:11.0pt;font-family:"Calibri",sans-serif">We
have used a couple of different DHCP
servers for NBN IPoE sessions over the
last few years, all talking to a
RADIUS back end to look up the static
IP address information based on
circuit-ID (AVC). Initially we used a
Mikrotik router, but with a change in
RADIUS server we need the DHCP server
to use the circuit-ID as the AAA
username, and the Mikrotik only uses
the MAC address. I found that the DHCP
server in our Cisco ASR could send the
circuit-ID as the AAA username, but it
has a “feature” where AAA-based DHCP
sessions have a maximum life (defined
by Cisco AVPair session-duration,
which has to exist and can’t be zero)
after which the DHCP lease is forced
to be released and has to be renewed
from scratch. This causes a brief
outage to the service while they have
no IP address, and causes some of our
clients to failover to an alternate
connection. After a chat with Cisco, I
was told that it was by design and
would not be changed or allowed to be
overridden.</span></p>
</div>
<div>
<p class="MsoNormal"><span
style="font-size:11.0pt;font-family:"Calibri",sans-serif"> </span></p>
</div>
<div>
<p class="MsoNormal"><span
style="font-size:11.0pt;font-family:"Calibri",sans-serif">Our
RADIUS server is FreeRADIUS, but it’s
integrated with a customer management
system, and it doesn’t allow us to use
DEFAULT as the username and pick up
the circuit-ID as an additional check.</span></p>
</div>
<div>
<p class="MsoNormal"><span
style="font-size:11.0pt;font-family:"Calibri",sans-serif"> </span></p>
</div>
<div>
<p class="MsoNormal"><span
style="font-size:11.0pt;font-family:"Calibri",sans-serif">Does
anyone have any suggestions of a DHCP
server that leverages RADIUS and can
use circuit-ID as the AAA username,
but is otherwise standard and allows
unlimited renewals?</span></p>
</div>
<div>
<p class="MsoNormal"><span
style="font-size:11.0pt;font-family:"Calibri",sans-serif"> </span></p>
</div>
<div>
<p class="MsoNormal"><span
style="font-size:11.0pt;font-family:"Calibri",sans-serif"
lang="EN-US">Regards,</span><span
style="font-size:11.0pt;font-family:"Calibri",sans-serif"></span></p>
</div>
<div>
<p class="MsoNormal"><b><span
style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:#1f497d"
lang="EN-US">Philip Loenneker |
Network Engineer</span></b><span><b><span
style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:#ed7d31"
lang="EN-US"> </span></b></span><b><span
style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:#ed7d31"
lang="EN-US">| TasmaNet</span></b><span
style="font-size:11.0pt;font-family:"Calibri",sans-serif"></span></p>
</div>
<div>
<p class="MsoNormal"><span
style="font-size:10.0pt;font-family:"Calibri",sans-serif;color:gray"
lang="EN-US">40-50 Innovation Drive,
Dowsing Point, Tas 7010, Australia</span><span
style="font-size:11.0pt;font-family:"Calibri",sans-serif"></span></p>
</div>
<div>
<p class="MsoNormal"><span
style="font-size:10.0pt;font-family:"Calibri",sans-serif;color:gray"
lang="EN-US">P: 03 6165 2542 | M: 0404
097 816</span><span
style="font-size:11.0pt;font-family:"Calibri",sans-serif"></span></p>
</div>
<div>
<p class="MsoNormal"><span
style="font-size:10.0pt;font-family:"Calibri",sans-serif"
lang="EN-US"><a moz-do-not-send="true"
href="mailto:philip.loenneker@tasmanet.com.au" target="_blank"><span
style="color:#0563c1">philip.loenneker@tasmanet.com.<wbr>au</span></a></span><span
style="font-size:11.0pt;font-family:"Calibri",sans-serif"></span></p>
</div>
<div>
<p class="MsoNormal"><u><span
style="font-size:10.0pt;font-family:"Calibri",sans-serif;color:#ed7d31"><a
moz-do-not-send="true"
href="http://www.tasmanet.com.au/"
target="_blank"><span
style="color:#0563c1">www.tasmanet.com.au</span></a></span></u><span
style="font-size:11.0pt;font-family:"Calibri",sans-serif"></span></p>
</div>
<div>
<p class="MsoNormal"><span
style="font-size:11.0pt;font-family:"Calibri",sans-serif"> </span></p>
</div>
<p class="MsoNormal"><span
style="font-size:9.0pt;font-family:"Helvetica",sans-serif">______________________________<wbr>_________________<br>
AusNOG mailing list<br>
</span><a moz-do-not-send="true"
href="mailto:AusNOG@lists.ausnog.net"
target="_blank"><span
style="font-size:9.0pt;font-family:"Helvetica",sans-serif;color:#954f72">AusNOG@lists.ausnog.net</span></a><span
style="font-size:9.0pt;font-family:"Helvetica",sans-serif"><br>
</span><a moz-do-not-send="true"
href="http://lists.ausnog.net/mailman/listinfo/ausnog"
target="_blank"><span
style="font-size:9.0pt;font-family:"Helvetica",sans-serif;color:#954f72">http://lists.ausnog.net/<wbr>mailman/listinfo/ausnog</span></a></p>
</div>
</blockquote>
</div>
<p class="MsoNormal"> </p>
</div>
</div>
</div>
</div>
</div>
<br>
______________________________<wbr>_________________<br>
AusNOG mailing list<br>
<a moz-do-not-send="true"
href="mailto:AusNOG@lists.ausnog.net">AusNOG@lists.ausnog.net</a><br>
<a moz-do-not-send="true"
href="http://lists.ausnog.net/mailman/listinfo/ausnog"
rel="noreferrer" target="_blank">http://lists.ausnog.net/<wbr>mailman/listinfo/ausnog</a><br>
<br>
</blockquote>
</div>
<br>
<br clear="all">
<div><br>
</div>
-- <br>
<div class="gmail_signature" data-smartmail="gmail_signature">
<div dir="ltr">
<p>Damien Gardner Jnr<br>
VK2TDG. Dip EE. GradIEAust<br>
<a moz-do-not-send="true"
href="mailto:rendrag@rendrag.net" target="_blank">rendrag@rendrag.net</a>
- <span><a moz-do-not-send="true"
href="http://www.rendrag.net/" target="_blank">http://www.rendrag.net/</a><u><br>
</u></span>--<br>
We rode on the winds of the rising storm,<br>
We ran to the sounds of thunder.<br>
We danced among the lightning bolts,<br>
and tore the world asunder</p>
</div>
</div>
</div>
<br>
<fieldset class="mimeAttachmentHeader"></fieldset>
<br>
<pre wrap="">_______________________________________________
AusNOG mailing list
<a class="moz-txt-link-abbreviated" href="mailto:AusNOG@lists.ausnog.net">AusNOG@lists.ausnog.net</a>
<a class="moz-txt-link-freetext" href="http://lists.ausnog.net/mailman/listinfo/ausnog">http://lists.ausnog.net/mailman/listinfo/ausnog</a>
</pre>
</blockquote>
<br>
</body>
</html>