TekRADIUS - Data volume based authorization
-
Upload
yasin-kaplan -
Category
Software
-
view
47 -
download
0
Transcript of TekRADIUS - Data volume based authorization
Data Volume Based Authorization - KaplanKaplanSoftSoft
Data Volume Based Authorization
RADIUS protocol provides a standard way to instruct access servers or network access servers (NASes) maximum session time for an authorized user by Session-Timeout. Unfortunately the protocol does not provide a standard way to instruct the NAS for the authorized maximum amount of data volume can be uploaded or downloaded. Some vendors provide Vendor Specific Attributes for this purpose;
Mikrotik
Mikrotik-Recv-Limit, 32 bit value of number of allowed input octets. Mikrotik-Xmit-Limit, 32 bit value of number of allowed output octets. Mikrotik-Total-Limit, 32 bit value of number of allowed total octets.
Nomadix
Nomadix-MaxBytesUp, 32 bit value of number of allowed input octets. Nomadix-MaxBytesDown, 32 bit value of number of allowed output octets.
Chillispot
ChilliSpot-Max-Input-Octets, 32 bit value of number of allowed input octets. ChilliSpot-Max-Output-Octets, 32 bit value of number of allowed output octets. ChilliSpot-Max-Total-Octets, 32 bit value of number of allowed total octets.
Colubris
Colubris-AVPAIR=max-input-octets=<32 bit value of number of allowed input octets> Colubris-AVPAIR=max-output-octets=<32 bit value of number of allowed output octets>
TekRADIUS uses User-Credit attribute to store user quota. You can set unit of this value by using Credit-Unit attribute. Credit-Unit attribute can have following values;
Seconds Minutes Bytes-in KBytes-in MBytes-in Bytes-out KBytes-out MBytes-out Bytes-sum KBytes-sum MBytes-sum
http://www.kaplansoft.com/ 1
Data Volume Based Authorization - KaplanKaplanSoftSoft
If User-Credit exists in a user profile and User-Credit is set to a value other than Seconds or Minutes, TekRADIUS will add flowing attributes to Success-Reply message according to the vendor of the NAS.
Bytes-in, KBytes-in, MBytes-in Bytes-out, KBytes-out, MBytes-out Bytes-sum, KBytes-sum, MBytes-sum
Mikrotik Mikrotik-Recv-Limit Mikrotik-Xmit-Limit Mikrotik-Total-Limit
Nomadix Nomadix-MaxBytesDown Nomadix-MaxBytesUp Nomadix-MaxBytesUp
Chillispot ChilliSpot-Max-Input-Octets ChilliSpot-Max-Output-Octets ChilliSpot-Max-Total-Octets
Colubris Colubris-AVPAIR=max-input-octets Colubris-AVPAIR=max-output-octets Colubris-AVPAIR=max-output-octets
These attribute's value set to the value of User-Credit specified in the user profile. TekRADIUS will update User-Credit value as RADIUS Accounting-stop or Checkpoint (Interim-Update) messages received. This feature is available only in SP edition.
http://www.kaplansoft.com/ 2