Here's the problem. It works well for individual IP users; when they call
in a route is broadcast over the ethernet, and when they hang up the route
is deleted. the problem came when we tried to set my dialup account to give
me the entire 198.108.16.192-255 subnet. I added the following entry to my
radius users file:
invid Authentication-Type = Unix-PW
Framed-Protocol = SLIP
Framed-IP-Address = 198.108.16.193
Framed-IP-Netmask = 255.255.255.192
Framed-Routing = Broadcast-Listen
Framed-Compression = Van-Jacobson-TCP-IP
Framed-MTU = 1500
(I chose SLIP because it would mark the link as "up" without me having to
run a slip client at my end, so it was easier to test. PPP would require me
to actually start a PPP daemon at my end before the link would be marked as
up).
Here's the catch. When I log in using this account, the Portmaster
correctly broadcasts a route, and sets up a ptp interface with the correct
IP address and netmask. However, it bounces back any packets not destined
for the primary address! It doesn't seem to understand the concept of the
subnet here; the PM's routing table doesn't seem to have any field for a
netmask, so it just adds a route to 198.108.16.193 with an implicit netmask
of 255.255.255.255, when it really should be 255.255.255.192 (the ptp
interface however _does_ have the correct netmask, as verified by an
ifconfig command).
What am I doing wrong here?
--
invid@optera.com "This is God, concluding my broadcast day..."
http://www.optera.com/~invid - MST3K, "The Magic Voyage of Sinbad"
PGP fingerprint: 90 05 50 DA 0E 18 CD 47 C5 25 83 1F A5 41 17 73