Cisco Inteligent Services Gateway

Hi all,

Anyone have a sample config for ISG using DHCP option? [:@] The documentation provided by Cisco on this is incomplete and shocking so any help would be appreciated

Comments

  • Hi, Here is working DHCP policy

    Authorization is based on circuit-id

    policy-map type control PLC-DHCP
     class type control CONDB event timed-policy-expiry
      1 service disconnect
     !
     class type control always event account-logon
      1 authenticate aaa list ISG-RADIUS
      10 service-policy type service unapply name PLS-L4-Redirect
     !
     class type control always event account-logoff
      1 service disconnect
     !
     class type control always event session-restart
      10 service-policy type service name PLS-Net-Default
      14 service-policy type service name PLS-Keepalive2
      17 authorize aaa list TAL password cisco identifier circuit-id
      30 set-timer TIMERB 5
     !
     class type control always event session-start
      10 service-policy type service name PLS-Net-Default
      14 service-policy type service name PLS-Keepalive2
      17 authorize aaa list TAL password cisco identifier circuit-id
      30 set-timer TIMERB 5
     !       
    !

  • Thanks for the config. I assume you have snooping & Option 82 configured to relay the circuit-id on the switch.

  • Hi,

    Yea you r right. Opt82 on swithes and DSLAM'es.

    YOu can put as identifier not only circuit id, where are a lot of options such as ip address, vendor id .. e.t.c.

Sign In or Register to comment.