Filter
Top Products
16-18
Cisco 10000 Series Router Software Configuration Guide
OL-2226-23
Chapter 16 Configuring RADIUS Features
RADIUS Packet of Disconnect
• To prevent unauthorized servers from disconnecting users, the authorizing agent that issues the POD
packet must include three parameters in its packet of disconnect request. For a session to be
disconnected, all parameters must match their expected values at the router. If the parameters do not
match, the router discards the packet of disconnect packet and sends a NACK (negative
acknowledgement message) to the agent.
The data parameters are the following RADIUS attributes:
• User- Name (RADIUS IETF attribute 1)
• Framed-IP-Address (RADIUS IETF attribute 8)
• Acct-Session-Id (RADIUS IETF attribute 44)
• Session-Svr-Key (vendor-proprietary RADIUS attribute 151)
For information about RADIUS attributes, see Appendix A, “RADIUS Attributes”.
The RADIUS Packet of Disconnect feature is discussed in the following topics:
• Feature History for RADIUS Packet of Disconnect, page 16-18
• Benefits for RADIUS Packet of Disconnect, page 16-18
• Restrictions for RADIUS Packet of Disconnect, page 16-18
• Related Documents for RADIUS Packet of Disconnect, page 16-19
• Prerequisites for RADIUS Packet of Disconnect, page 16-19
• Configuration Tasks for RADIUS Packet of Disconnect, page 16-19
• Monitoring and Maintaining AAA POD Server, page 16-21
• Configuration Example for RADIUS Packet of Disconnect, page 16-21
Feature History for RADIUS Packet of Disconnect
Benefits for RADIUS Packet of Disconnect
• Ability to terminate an established session
Restrictions for RADIUS Packet of Disconnect
Proper matching identification information must be communicated by the:
• Billing server and router configuration
• Router’s original accounting start request
• Server’s POD request
Cisco IOS Release Description Required PRE
12.3(7)XI1 This feature was introduced on the Cisco 10000 series
router.
PRE2
12.2(28)SB This feature was integrated into Cisco IOS Release
12.2(28)SB.
PRE2