Filter
Top Products
A-132
Cisco Content Services Gateway - 2nd Generation Release 2.0 Installation and Configuration Guide
OL-15491-01
Appendix A CSG2 Command Reference
ip csg radius proxy
Defaults The secret-string is stored in plain text.
The csg-source-address is set to csg-address.
If no VRF table is specified for the CSG2, the CSG2 uses the global routing table for RADIUS
communication.
If no VRF table is specified for the RADIUS server, the RADIUS server uses the global routing table for
RADIUS communication.
If no VRF table is specified for the subscriber, the subscriber uses the global routing table for RADIUS
communication.
csg-source-address Specifies the source IP address that the CSG2 is to use when sending packets
to the RADIUS server.
The CSG2 source IP address must be unique (or the IP address-VRF name
combination must be unique, if VRF is configured).
If you want the CSG2 RADIUS proxy IP address to be a member of a CSG2
interface subnet, you must configure the CSG2 source IP address as follows:
• In non-redundant configurations, you must configure the CSG2 source IP
address as a secondary IP address configured on the appropriate interface.
• In redundant configurations, you must configure the CSG2 source IP
address as a standby secondary IP address on the appropriate interface.
Note The CSG2 performs radius proxy processing only on User Datagram
Protocol (UDP) traffic that is destined for the csg-source-address. The
csg-source-address cannot be used for any other UDP communication
with the CSG2.
key (Optional) Specifies a RADIUS key.
Note Specify no more than one key for each CSG2 IP address.
encrypt (Optional) Indicates how the secret-string is represented when the
configuration is displayed (for example, show run), or how it is written to
nonvolatile memory (for example, write memory).
The possible values are 0 and 7:
• 0—The secret-string is stored in plain text. This is the default setting.
• 7—The secret-string is encrypted before it is displayed or written to
nonvolatile memory.
Note If your router is configured to encrypt all passwords, then the password
is represented as 7 followed by the encrypted text. See the Cisco IOS
service command for more details.
secret-string (Optional) 1- to 64-character clear password value for MD5 authentication. All
characters are valid; case is significant.
The secret-string is always sent in plain text to the CSG2 module when the
configuration is downloaded.
The secret-string must match the secret that is specified on the RADIUS client
(for example, the gateway general packet radio service [GPRS] support node
[GGSN]).
vrf sub-vrf-name (Optional) Virtual Routing and Forwarding (VRF) table which the subscriber
is to use for RADIUS communication.