I want to set up a PPP server with a CISCO AS2511-RJ authentification is used by tacas+ daemon in a linux box the /root/tac_plus.cfg is like this:
key = thekey
accounting file = /var/log/taccount
group = test {
service = ppp protocol = ip {
}
}
user = test {
login = cleartext test2003
member = test
service = exec {
timeout = 1
}
}
when i do ppp connection to the router (it has one us robotic modem plugged to it) i getr black box with caratères like this: &*!%#
I suppose i must configure the modem so to do this i telnet to the router port 2001 :
"telnet 200.200.200.2 2001"
when auth with username=tech and password=tech2003 (taken from tac_plus.cfg config file) it say loggin failled when i test with the admin user also logging failled !!
what is the problem !
i have used exactelly the same config with cisco2500 but IOS 11 with no problem with tacacs+
any suggestion is welcom
here is the config of the router .
-------------------------------------------------------------------
Current configuration:
!
version 12.1
service timestamps debug uptime
service timestamps log uptime
service password-encryption
!
hostname ras
!
aaa new-model
aaa authentication login default group tacacs+ enable
aaa authentication login no_tacacs local
aaa authentication ppp default if-needed group tacacs+
aaa authorization exec no_tacacs if-authenticated group tacacs+
aaa authorization network default group tacacs+
aaa accounting exec default start-stop group tacacs+
aaa accounting network default start-stop group tacacs+
enable password 7 021601490E1C5D711C1C
!
username admin password 7 0831495C0C03
!
!
!
!
ip subnet-zero
no ip source-route
ip rcmd rsh-enable
ip rcmd remote-host tech 200.200.200.20 root enable
ip domain-name dom.com
ip name-server 200.200.200.10
!
!
!
!
interface Ethernet0
ip address 200.200.200.2 255.255.255.248
ip nat outside
!
interface Serial0
no ip address
shutdown
interface Group-Async1
ip unnumbered Ethernet0
ip nat inside
encapsulation ppp
async mode interactive
no cdp enable
group-range 1 16
!
ip nat inside source list 1 interface Ethernet0 overload
ip classless
ip route 0.0.0.0 0.0.0.0 200.200.200.1
no ip http server
!
access-list 1 permit any
tacacs-server host 200.200.200.3
tacacs-server timeout 60
tacacs-server key thekey
snmp-server engineID local 00000009020000107B3B9531
snmp-server community 2033smtp RO 2
!
line con 0
exec-timeout 0 0
login authentication no_tacacs
transport input none
line 1 16
session-timeout 15
exec-timeout 0 30
session-limit 1
modem InOut
modem autoconfigure discovery
autocommand ppp
notify
transport input all
autohangup
stopbits 1
speed 115200
flowcontrol hardware
line aux 0
transport input all
line vty 0 4
session-timeout 5
login authentication no_tacacs
!
end
---------------------------
key = thekey
accounting file = /var/log/taccount
group = test {
service = ppp protocol = ip {
}
}
user = test {
login = cleartext test2003
member = test
service = exec {
timeout = 1
}
}
when i do ppp connection to the router (it has one us robotic modem plugged to it) i getr black box with caratères like this: &*!%#
I suppose i must configure the modem so to do this i telnet to the router port 2001 :
"telnet 200.200.200.2 2001"
when auth with username=tech and password=tech2003 (taken from tac_plus.cfg config file) it say loggin failled when i test with the admin user also logging failled !!
what is the problem !
i have used exactelly the same config with cisco2500 but IOS 11 with no problem with tacacs+
any suggestion is welcom
here is the config of the router .
-------------------------------------------------------------------
Current configuration:
!
version 12.1
service timestamps debug uptime
service timestamps log uptime
service password-encryption
!
hostname ras
!
aaa new-model
aaa authentication login default group tacacs+ enable
aaa authentication login no_tacacs local
aaa authentication ppp default if-needed group tacacs+
aaa authorization exec no_tacacs if-authenticated group tacacs+
aaa authorization network default group tacacs+
aaa accounting exec default start-stop group tacacs+
aaa accounting network default start-stop group tacacs+
enable password 7 021601490E1C5D711C1C
!
username admin password 7 0831495C0C03
!
!
!
!
ip subnet-zero
no ip source-route
ip rcmd rsh-enable
ip rcmd remote-host tech 200.200.200.20 root enable
ip domain-name dom.com
ip name-server 200.200.200.10
!
!
!
!
interface Ethernet0
ip address 200.200.200.2 255.255.255.248
ip nat outside
!
interface Serial0
no ip address
shutdown
interface Group-Async1
ip unnumbered Ethernet0
ip nat inside
encapsulation ppp
async mode interactive
no cdp enable
group-range 1 16
!
ip nat inside source list 1 interface Ethernet0 overload
ip classless
ip route 0.0.0.0 0.0.0.0 200.200.200.1
no ip http server
!
access-list 1 permit any
tacacs-server host 200.200.200.3
tacacs-server timeout 60
tacacs-server key thekey
snmp-server engineID local 00000009020000107B3B9531
snmp-server community 2033smtp RO 2
!
line con 0
exec-timeout 0 0
login authentication no_tacacs
transport input none
line 1 16
session-timeout 15
exec-timeout 0 30
session-limit 1
modem InOut
modem autoconfigure discovery
autocommand ppp
notify
transport input all
autohangup
stopbits 1
speed 115200
flowcontrol hardware
line aux 0
transport input all
line vty 0 4
session-timeout 5
login authentication no_tacacs
!
end
---------------------------
