Portslave stuff for Linux
Portslave 1.16
This is the OLD documentation:
I've written some software that enables us to use Linux boxes on the
Cistron Network as RADIUS compatible terminal servers, so we don't
need to buy those expensive Livingston boxes..
What it does:
- Initializes the modem and waits for a RING. Your modems
don't need to be in auto-answer mode. You also don't need
a getty.
- When a connection has been made, portslave sends "login: "
and expects that someone logs in. This data is sent to a
RADIUS server on the network to see what protocol to start.
- Portslave autodetects PPP packets at the login prompt and
switches to PPP mode if needed.
- Auto-detect PPP mode uses PAP authentication, also through RADIUS.
- Protocols that can be executed are SLIP (built in), rlogin,
local (shell) login and PPP. A RADIUS accounting packet is
sent to a RADIUS server at startup.
- When the session ends, another RADIUS accounting packet is sent.
- You can specify separate servers for Authentication and
Accounting. You can also specify secondary servers for both.
All of this can be specified on a per-port basis.
This software has been in production use for a couple of months on all our
POPs now and works fine. If you want you can read the
README file for portslave. The latest version of portslave can also
be found on
our FTP server .
ripd 0.02
Since there is no good routing daemon for Linux (maybe gated - but it's
big, buggy and hard to understand) I wrote a simple RIP announcer to
announce routes to dialin IP numbers that are not in your ethernet
network. We redistribute this info into OSPF on the nearest Cisco router,
so that we can offers POP independant static IP numbers.
tacp2rad 0.1
We bought a Cisco 4000M for ISDN30 (PRI) access, and what do you think - it
didn't support RADIUS (well, the -p image does but it was $1000,- more
expensive). It does support TACACS+, though. So I wrote
tacp2rad. This daemon sits between a TACACS+ client (a Cisco
access server) and a RADIUS server, translating Authentication,
Authorization and Accounting requests.
Probably by now it's better to just the the -p image. I'm leaving this code
around as sample RADIUS and TACACS+ code for anyone who's interested in
such things.
miquels@cistron.nl