next up previous
Next: per-command authorization Up: authorization Previous: common authorization axamples

specific examples

dial-in PPP with pool DIALUP

service protocol av-pair
ppp

dial-in PPP with pool DIALUP and for ISDN

service | protocol | av-pair ----+-----+---------

  ppp   |   lcp    |

  ppp   |   ip     | addr-pool=DIALUP

  ppp   |multilink | max-links=2 ------------------- 

dial-in PPP with static ip addr

service | protocol | av-pair ----+-----+---------

  ppp   |   lcp    |

  ppp   |   ip     | addr=10.1.1.10

  shell |          | cmd=

  shell |          | autocmd=ppp

  shell |          | noescape=true ------------------- 

async tunneling

service | protocol | av-pair ----+-----+-------------------      shell |          | cmd=

  shell |          | autocmd=telnet 192.168.1.112 /stream       shell |          | noescape=true -----------------------------

shell connect (all commands)

service | protocol | av-pair ----+-----+---------

  shell |          | cmd= ------------------- 

connect for UUCP (autocommand)

service | protocol | av-pair ----+-----+---------------------  shell  |          | cmd=

 shell  |          | autocmd=rlogin smtp.aaa.ru /user uuuser   shell  |          | noescape=true -------------------------------

for shell connect with restricted command set you should use PER-COMMAND AUTHORIZATION

set voice user parameter with voice gateway

  service   | protocol | av-pair ------+-----+-----------

 connection |   h323   |  h323-credit-time=120 -----------------------


2005-07-21