[ aaa new-model ]
aaa group server radius ibs-isg
server 172.16.18.10 auth-port 1812 acct-port 1813
ip radius source-interface GigabitEthernet0/2
aaa authentication ppp ibs-isg group ibs-isg
aaa authorization network ibs-isg group ibs-isg
aaa authorization prepaid ibs-isg group ibs-isg
aaa authorization subscriber-service ibs-isg local group ibs-isg
aaa accounting delay-start
aaa accounting update periodic 1
aaa accounting network ibs-isg start-stop group ibs-isg
[ aaa server radius dynamic-author ]
client 172.16.18.10 server-key 7 1533180105240B020B037B0B010618
auth-type any
ignore session-key
ignore server-key
[ subscriber feature prepaid IBS]
threshold time 0 seconds
threshold volume 0 bytes
interim-interval 5 minutes
method-list author ibs-isg
method-list accounting ibs-isg
password cisco
[ Class-map ]
class-map type traffic match-any VAS
match access-group input name VAS
match access-group output name VAS
class-map type traffic match-any FREE
match access-group input name FREE
match access-group output name FREE
class-map type traffic match-any INTERNET
match access-group output name INTERNET
match access-group input name INTERNET
class-map type traffic match-any VOD
match access-group output name VOD
match access-group input name VOD
[ policy-map ]
policy-map type service INTERNET__51200
10 class type traffic INTERNET
prepaid config IBS
police input 51200000 51200000 51200000
police output 51200000 51200000 51200000
!
class type traffic default in-out
drop
policy-map type service VOD__51200
9 class type traffic VOD
prepaid config IBS
police input 51200000 51200000 51200000
police output 51200000 51200000 51200000
!
class type traffic default in-out
drop
policy-map type service VAS__51200
8 class type traffic VAS
prepaid config IBS
police input 51200000 51200000 51200000
police output 51200000 51200000 51200000
!
class type traffic default in-out
drop
policy-map type service FREE__51200
7 class type traffic FREE
accounting aaa list ibs-isg
police input 51200000 51200000 51200000
police output 51200000 51200000 51200000
!
class type traffic default in-out
drop
[ policy-map type control ISG ]
class type control always event session-start
1 authenticate aaa list ibs-isg
[ bba-group pppoe global ]
virtual-template 1
sessions max limit 30000
sessions per-vlan limit 30000
sessions auto cleanup
[ interface Virtual-Template1 ]
mtu 1490
ip unnumbered GigabitEthernet0/2
ip tcp adjust-mss 1360
no logging event link-status
peer default ip address pool DefaultPool
keepalive 30 4
ppp encrypt mppe auto
ppp authentication pap chap ms-chap-v2 ms-chap ibs-isg
ppp authorization ibs-isg
ppp accounting ibs-isg
ppp ipcp dns 193.178.200.3 217.218.127.127
service-policy type control ISG
[ access-list ]
ip access-list extended VAS
permit ip any host 87.204.180.29
permit ip host 87.204.180.29 any
ip access-list extended VOD
permit ip any host 172.16.5.5
permit ip host 172.16.5.5 any
permit ip any host 172.16.200.2
permit ip host 172.16.200.2 any
ip access-list extended FREE
permit ip any host 172.16.100.1
permit ip host 172.16.100.1 any
ip access-list extended INTERNET
permit ip any any
[ radius server ]
radius-server attribute 44 include-in-access-req default-vrf
radius-server attribute 8 include-in-access-req
radius-server host 172.16.18.10 auth-port 1812 acct-port 1813 key 7 0472293501266C0F
radius-server source-ports extended
radius-server retransmit 1
radius-server timeout 3
radius-server vsa send accounting
radius-server vsa send authentication