forum.opennet.ru

Составление сообщения

Исходное сообщение

"ISG, policy-map  и глюк ACL !!! help"
Отправлено ATeam, 12-Дек-07 17:15

>нужна доп инфа
>авторизуйтесь клиентом lab123 - качайте пока не закончатся деньги
>т.е. пока вас не выкинет на портал
>после этого дайте вывод
>sh sss session username lab123 det | b  Active services associated
>with session
В каком виде это сделать ?
как есть сейчас ? когда  Сервис Интернет отключается и Включается сервис L4_REDIRECT ?
Вот -
sh sss session detailed
Current Subscriber Information: Total sessions 1
--------------------------------------------------
Unique Session ID: 128
Identifier:
SIP subscriber access type(s): Traffic-Class
Current SIP options: None
Session Up-time: 00:00:43, Last Changed: 00:00:43
Policy information:
  Context 03F4128C: Handle 0C0000F3
  AAA_id 0000003D: Flow_handle 0
  Authentication status: unauthen
  Downloaded User profile, including services:
    username             "0/0/1/100.4000"
    l4redirect           "redirect list 199 to group PERIODIC_L4R_NOTSERV"
    traffic-class        "out default drop"
    traffic-class        "in default drop"
    traffic-class        "in access-group name ACL_IN_WWW"
    traffic-class        "out access-group name ACL_OUT_WWW"
  Config history for session (recent to oldest):
    Access-type: Max Client: Service Command-Handler
     Policy event: None (Service)
      Profile name: L4_REDIRECT_SERVICE_NOTSERV, 4 references
        username             "0/0/1/100.4000"
        l4redirect           "redirect list 199 to group PERIODIC_L4R_NOTSERV"
        traffic-class        "out default drop"
        traffic-class        "in default drop"
        traffic-class        "in access-group name ACL_IN_WWW"
        traffic-class        "out access-group name ACL_OUT_WWW"
Session inbound features:
Feature: Layer 4 Redirect
  Rule  Cfg  Definition
  #1    SVC  Redirect list 199 to group PERIODIC_L4R_NOTSERV
Configuration sources associated with this session:
Service: L4_REDIRECT_SERVICE_NOTSERV, Active Time = 00:00:44
--------------------------------------------------
Unique Session ID: 126
Identifier:
SIP subscriber access type(s): Traffic-Class
Current SIP options: None
Session Up-time: 00:00:44, Last Changed: 00:00:44
Policy information:
  Context 03F41114: Handle 6A0000EF
  AAA_id 0000003D: Flow_handle 0
  Authentication status: unauthen
  Downloaded User profile, including services:
    username             "0/0/1/100.4000"
    traffic-class        "in access-group name GAM_ACL_IN priority 40"
    traffic-class        "out access-group name GAM_ACL_OUT priority 40"
    traffic-class        "out default drop"
    traffic-class        "in default drop"
    ssg-service-info     "IGAMING"
    ssg-service-info     "QD;1024000;1024000"
    ssg-service-info     "QU:512000;512000"
  Config history for session (recent to oldest):
    Access-type: Web-service-logon Client: Service Command-Handler
     Policy event: Service-Start (Service)
      Profile name: GAMING, 4 references
        username             "0/0/1/100.4000"
        traffic-class        "in access-group name GAM_ACL_IN priority 40"
        traffic-class        "out access-group name GAM_ACL_OUT priority 40"
        traffic-class        "out default drop"
        traffic-class        "in default drop"
        ssg-service-info     "IGAMING"
        ssg-service-info     "QD;1024000;1024000"
        ssg-service-info     "QU:512000;512000"

Session inbound features:
Feature: Policing
Upstream Params:
Average rate = 512000, Normal burst = 96000, Excess burst = 192000
Config level = Service
Session outbound features:
Feature: Policing
Dnstream Params:
Average rate = 1024000, Normal burst = 1024000, Excess burst = 0
Config level = Service
Configuration sources associated with this session:
Service: GAMING, Active Time = 00:00:46
--------------------------------------------------
Unique Session ID: 125
Identifier: 0/0/1/100.4000
SIP subscriber access type(s): IP
Current SIP options: Req Fwding/Req Fwded
Session Up-time: 00:00:46, Last Changed: 00:00:46
Policy information:
  Context 03F41404: Handle 7B0000EE
  AAA_id 0000003D: Flow_handle 0
  Authentication status: authen
  Downloaded User profile, excluding services:
    service-type         1 [Login]
    port-type            12 [PPPoE over QinQ]
    accounting-list      "BH_ACCNT_LIST"
    ssg-account-info     "ASERVICE_401_INTERNET"
    ssg-account-info     "NSERVICE_401_INTERNET_UPS"
    ssg-account-info     "AGAMING"
    ssg-account-info     "NL4_REDIRECT_SERVICE_NOTSERV"
    idletime             600 (0x258)
    clid-mac-addr        00 14 85 85 06 D1
    addr                 172.16.1.2
    netmask              255.255.255.255
    config-source-dpm    True
  Downloaded User profile, including services:
    service-type         1 [Login]
    port-type            12 [PPPoE over QinQ]
    accounting-list      "BH_ACCNT_LIST"
    ssg-account-info     "ASERVICE_401_INTERNET"
    ssg-account-info     "NSERVICE_401_INTERNET_UPS"
    ssg-account-info     "AGAMING"
    ssg-account-info     "NL4_REDIRECT_SERVICE_NOTSERV"
    idletime             600 (0x258)
    ssg-service-info     "IGAMING"
    ssg-service-info     "QD;1024000;1024000"
    ssg-service-info     "QU:512000;512000"
    clid-mac-addr        00 14 85 85 06 D1
    addr                 172.16.1.2
    netmask              255.255.255.255
    config-source-dpm    True
    username             "0/0/1/100.4000"
    l4redirect           "redirect list 199 to group PERIODIC_L4R_NOTSERV"
    traffic-class        "out default drop"
    traffic-class        "in default drop"
    traffic-class        "in access-group name ACL_IN_WWW"
    traffic-class        "out access-group name ACL_OUT_WWW"
  Config history for session (recent to oldest):
    Access-type: Max Client: SM
     Policy event: Notification Event (Service)
      Profile name: L4_REDIRECT_SERVICE_NOTSERV, 4 references
        username             "0/0/1/100.4000"
        l4redirect           "redirect list 199 to group PERIODIC_L4R_NOTSERV"
        traffic-class        "out default drop"
        traffic-class        "in default drop"
        traffic-class        "in access-group name ACL_IN_WWW"
        traffic-class        "out access-group name ACL_OUT_WWW"
    Access-type: Web-service-logon Client: SM
     Policy event: Apply Config Success (Unapplied) (Service)
      Profile name: SERVICE_401_INTERNET, 3 references
        username             "0/0/1/100.4000"
        accounting-list      "BH_ACCNT_LIST"
        traffic-class        "in access-group name  ACL_IN_INT priority 30"
        traffic-class        "out access-group name  ACL_OUT_INT priority 30"
        traffic-class        "out default drop"
        traffic-class        "in default drop"
        ssg-service-info     "QD;1024000;1024000"
        ssg-service-info     "QU:512000;512000"
        ssg-service-info     "ISERVICE_401_INTERNET"
    Access-type: IP Client: DHCP
     Policy event: Session-Update
      Profile name: apply-config-only, 2 references
        clid-mac-addr        00 14 85 85 06 D1
        addr                 172.16.1.2
        netmask              255.255.255.255
        config-source-dpm    True
    Access-type: Web-service-logon Client: SM
     Policy event: Apply Config Success (Service)
      Profile name: SERVICE_401_INTERNET, 3 references
        username             "0/0/1/100.4000"
        accounting-list      "BH_ACCNT_LIST"
        traffic-class        "in access-group name  ACL_IN_INT priority 30"
        traffic-class        "out access-group name  ACL_OUT_INT priority 30"
        traffic-class        "out default drop"
        traffic-class        "in default drop"
        ssg-service-info     "QD;1024000;1024000"
        ssg-service-info     "QU:512000;512000"
        ssg-service-info     "ISERVICE_401_INTERNET"
    Access-type: Web-service-logon Client: SM
     Policy event: Apply Config Success (Service)
      Profile name: GAMING, 4 references
        username             "0/0/1/100.4000"
        traffic-class        "in access-group name GAM_ACL_IN priority 40"
        traffic-class        "out access-group name GAM_ACL_OUT priority 40"
        traffic-class        "out default drop"
        traffic-class        "in default drop"
        ssg-service-info     "IGAMING"
        ssg-service-info     "QD;1024000;1024000"
        ssg-service-info     "QU:512000;512000"
    Access-type: IP Client: SM
     Policy event: Service Selection Request
      Profile name: nas-port:172.16.4.4:0/0/1/100.4000, 2 references
        service-type         1 [Login]
        port-type            12 [PPPoE over QinQ]
        accounting-list      "BH_ACCNT_LIST"
        ssg-account-info     "ASERVICE_401_INTERNET"
        ssg-account-info     "NSERVICE_401_INTERNET_UPS"
        ssg-account-info     "AGAMING"
        ssg-account-info     "NL4_REDIRECT_SERVICE_NOTSERV"
        idletime             600 (0x258)
  Active services associated with session:
    name "L4_REDIRECT_SERVICE_NOTSERV"
    name "GAMING"
  Rules, actions and conditions executed:
    subscriber rule-map RULE-401a-1
      condition always event session-start
        1 authorize identifier nas-port
        subscriber condition-map match-all SERVICE_401_UPGRADED_INTERNET
          match identifier service-name SERVICE_401_UPGRADED_INTERNET [FALSE]
    subscriber rule-map RULE-401a-1
      condition SERVICE_401_UPGRADED_INTERNET event service-start
        subscriber condition-map match-all SERVICE_401_INTERNET
          match identifier service-name SERVICE_401_INTERNET [FALSE]
    subscriber rule-map RULE-401a-1
      condition SERVICE_401_INTERNET event service-start
        subscriber condition-map match-all SERVICE_401_INTERNET_UP
          match identifier service-name SERVICE_401_INTERNET_UP [FALSE]
    subscriber rule-map RULE-401a-1
      condition SERVICE_401_INTERNET_UP event service-start
        subscriber condition-map match-all SERVICE_401_INTERNET
          match identifier service-name SERVICE_401_INTERNET [TRUE]
    subscriber rule-map RULE-401a-1
      condition SERVICE_401_INTERNET event service-start
        1 service-policy type service unapply name L4_REDIRECT_SERVICE_NOTSERV
        2 service-policy type service unapply name SERVICE_401_INTERNET
        3 service-policy type service identifier service-name
        subscriber condition-map match-all SERVICE_401_INTERNET
          match identifier service-name SERVICE_401_INTERNET [TRUE]
    subscriber rule-map RULE-401a-1
      condition SERVICE_401_INTERNET event service-stop
        1 service-policy type service unapply identifier service-name
        2 service-policy type service name L4_REDIRECT_SERVICE_NOTSERV
Session inbound features:
Feature: IP Idle Timeout
  Timeout value is 600
  Idle time is 00:00:02
Feature: Session accounting
  Method List: BH_ACCNT_LIST
  Packets = 52, Bytes = 6607
Feature: Layer 4 Redirect
  Rule table is empty
Traffic classes:
  Traffic class session ID: 126
   ACL Name: GAM_ACL_IN, Packets = 3, Bytes = 144
  Traffic class session ID: 128
   ACL Name: ACL_IN_WWW, Packets = 5, Bytes = 682
Default traffic is dropped
Unmatched Packets (dropped) = 44, Re-classified packets (redirected) = 5
Session outbound features:
Feature: Session accounting
  Method List: BH_ACCNT_LIST
  Packets = 6, Bytes = 2087
Traffic classes:
  Traffic class session ID: 126
   ACL Name: GAM_ACL_OUT, Packets = 0, Bytes = 0
  Traffic class session ID: 128
   ACL Name: ACL_OUT_WWW, Packets = 6, Bytes = 2087
Default traffic is dropped
Unmatched Packets (dropped) = 0, Re-classified packets (redirected) = 0
Configuration sources associated with this session:
Service: L4_REDIRECT_SERVICE_NOTSERV, Active Time = 00:00:56
Service: GAMING, Active Time = 00:00:56
Interface: GigabitEthernet0/1.4000100, Active Time = 00:00:56
Router#
В таком виде всё работает ...
Если пополнить счёт , и активировать на портале услугу SERVICE_INTERNET , то у абонента появится доступ в интернет ...
Тут проблемы то нет ...(
ps
по предыдущему посту - а приоритет сервисов как проставляется ? в policy-map ?

Исходное сообщение
"ISG, policy-map и глюк ACL !!! help" Отправлено ATeam, 12-Дек-07 17:15
>нужна доп инфа >авторизуйтесь клиентом lab123 - качайте пока не закончатся деньги >т.е. пока вас не выкинет на портал >после этого дайте вывод >sh sss session username lab123 det \| b Active services associated >with session В каком виде это сделать ? как есть сейчас ? когда Сервис Интернет отключается и Включается сервис L4_REDIRECT ? Вот - sh sss session detailed Current Subscriber Information: Total sessions 1 -------------------------------------------------- Unique Session ID: 128 Identifier: SIP subscriber access type(s): Traffic-Class Current SIP options: None Session Up-time: 00:00:43, Last Changed: 00:00:43 Policy information: Context 03F4128C: Handle 0C0000F3 AAA_id 0000003D: Flow_handle 0 Authentication status: unauthen Downloaded User profile, including services: username "0/0/1/100.4000" l4redirect "redirect list 199 to group PERIODIC_L4R_NOTSERV" traffic-class "out default drop" traffic-class "in default drop" traffic-class "in access-group name ACL_IN_WWW" traffic-class "out access-group name ACL_OUT_WWW" Config history for session (recent to oldest): Access-type: Max Client: Service Command-Handler Policy event: None (Service) Profile name: L4_REDIRECT_SERVICE_NOTSERV, 4 references username "0/0/1/100.4000" l4redirect "redirect list 199 to group PERIODIC_L4R_NOTSERV" traffic-class "out default drop" traffic-class "in default drop" traffic-class "in access-group name ACL_IN_WWW" traffic-class "out access-group name ACL_OUT_WWW" Session inbound features: Feature: Layer 4 Redirect Rule Cfg Definition #1 SVC Redirect list 199 to group PERIODIC_L4R_NOTSERV Configuration sources associated with this session: Service: L4_REDIRECT_SERVICE_NOTSERV, Active Time = 00:00:44 -------------------------------------------------- Unique Session ID: 126 Identifier: SIP subscriber access type(s): Traffic-Class Current SIP options: None Session Up-time: 00:00:44, Last Changed: 00:00:44 Policy information: Context 03F41114: Handle 6A0000EF AAA_id 0000003D: Flow_handle 0 Authentication status: unauthen Downloaded User profile, including services: username "0/0/1/100.4000" traffic-class "in access-group name GAM_ACL_IN priority 40" traffic-class "out access-group name GAM_ACL_OUT priority 40" traffic-class "out default drop" traffic-class "in default drop" ssg-service-info "IGAMING" ssg-service-info "QD;1024000;1024000" ssg-service-info "QU:512000;512000" Config history for session (recent to oldest): Access-type: Web-service-logon Client: Service Command-Handler Policy event: Service-Start (Service) Profile name: GAMING, 4 references username "0/0/1/100.4000" traffic-class "in access-group name GAM_ACL_IN priority 40" traffic-class "out access-group name GAM_ACL_OUT priority 40" traffic-class "out default drop" traffic-class "in default drop" ssg-service-info "IGAMING" ssg-service-info "QD;1024000;1024000" ssg-service-info "QU:512000;512000" Session inbound features: Feature: Policing Upstream Params: Average rate = 512000, Normal burst = 96000, Excess burst = 192000 Config level = Service Session outbound features: Feature: Policing Dnstream Params: Average rate = 1024000, Normal burst = 1024000, Excess burst = 0 Config level = Service Configuration sources associated with this session: Service: GAMING, Active Time = 00:00:46 -------------------------------------------------- Unique Session ID: 125 Identifier: 0/0/1/100.4000 SIP subscriber access type(s): IP Current SIP options: Req Fwding/Req Fwded Session Up-time: 00:00:46, Last Changed: 00:00:46 Policy information: Context 03F41404: Handle 7B0000EE AAA_id 0000003D: Flow_handle 0 Authentication status: authen Downloaded User profile, excluding services: service-type 1 [Login] port-type 12 [PPPoE over QinQ] accounting-list "BH_ACCNT_LIST" ssg-account-info "ASERVICE_401_INTERNET" ssg-account-info "NSERVICE_401_INTERNET_UPS" ssg-account-info "AGAMING" ssg-account-info "NL4_REDIRECT_SERVICE_NOTSERV" idletime 600 (0x258) clid-mac-addr 00 14 85 85 06 D1 addr 172.16.1.2 netmask 255.255.255.255 config-source-dpm True Downloaded User profile, including services: service-type 1 [Login] port-type 12 [PPPoE over QinQ] accounting-list "BH_ACCNT_LIST" ssg-account-info "ASERVICE_401_INTERNET" ssg-account-info "NSERVICE_401_INTERNET_UPS" ssg-account-info "AGAMING" ssg-account-info "NL4_REDIRECT_SERVICE_NOTSERV" idletime 600 (0x258) ssg-service-info "IGAMING" ssg-service-info "QD;1024000;1024000" ssg-service-info "QU:512000;512000" clid-mac-addr 00 14 85 85 06 D1 addr 172.16.1.2 netmask 255.255.255.255 config-source-dpm True username "0/0/1/100.4000" l4redirect "redirect list 199 to group PERIODIC_L4R_NOTSERV" traffic-class "out default drop" traffic-class "in default drop" traffic-class "in access-group name ACL_IN_WWW" traffic-class "out access-group name ACL_OUT_WWW" Config history for session (recent to oldest): Access-type: Max Client: SM Policy event: Notification Event (Service) Profile name: L4_REDIRECT_SERVICE_NOTSERV, 4 references username "0/0/1/100.4000" l4redirect "redirect list 199 to group PERIODIC_L4R_NOTSERV" traffic-class "out default drop" traffic-class "in default drop" traffic-class "in access-group name ACL_IN_WWW" traffic-class "out access-group name ACL_OUT_WWW" Access-type: Web-service-logon Client: SM Policy event: Apply Config Success (Unapplied) (Service) Profile name: SERVICE_401_INTERNET, 3 references username "0/0/1/100.4000" accounting-list "BH_ACCNT_LIST" traffic-class "in access-group name ACL_IN_INT priority 30" traffic-class "out access-group name ACL_OUT_INT priority 30" traffic-class "out default drop" traffic-class "in default drop" ssg-service-info "QD;1024000;1024000" ssg-service-info "QU:512000;512000" ssg-service-info "ISERVICE_401_INTERNET" Access-type: IP Client: DHCP Policy event: Session-Update Profile name: apply-config-only, 2 references clid-mac-addr 00 14 85 85 06 D1 addr 172.16.1.2 netmask 255.255.255.255 config-source-dpm True Access-type: Web-service-logon Client: SM Policy event: Apply Config Success (Service) Profile name: SERVICE_401_INTERNET, 3 references username "0/0/1/100.4000" accounting-list "BH_ACCNT_LIST" traffic-class "in access-group name ACL_IN_INT priority 30" traffic-class "out access-group name ACL_OUT_INT priority 30" traffic-class "out default drop" traffic-class "in default drop" ssg-service-info "QD;1024000;1024000" ssg-service-info "QU:512000;512000" ssg-service-info "ISERVICE_401_INTERNET" Access-type: Web-service-logon Client: SM Policy event: Apply Config Success (Service) Profile name: GAMING, 4 references username "0/0/1/100.4000" traffic-class "in access-group name GAM_ACL_IN priority 40" traffic-class "out access-group name GAM_ACL_OUT priority 40" traffic-class "out default drop" traffic-class "in default drop" ssg-service-info "IGAMING" ssg-service-info "QD;1024000;1024000" ssg-service-info "QU:512000;512000" Access-type: IP Client: SM Policy event: Service Selection Request Profile name: nas-port:172.16.4.4:0/0/1/100.4000, 2 references service-type 1 [Login] port-type 12 [PPPoE over QinQ] accounting-list "BH_ACCNT_LIST" ssg-account-info "ASERVICE_401_INTERNET" ssg-account-info "NSERVICE_401_INTERNET_UPS" ssg-account-info "AGAMING" ssg-account-info "NL4_REDIRECT_SERVICE_NOTSERV" idletime 600 (0x258) Active services associated with session: name "L4_REDIRECT_SERVICE_NOTSERV" name "GAMING" Rules, actions and conditions executed: subscriber rule-map RULE-401a-1 condition always event session-start 1 authorize identifier nas-port subscriber condition-map match-all SERVICE_401_UPGRADED_INTERNET match identifier service-name SERVICE_401_UPGRADED_INTERNET [FALSE] subscriber rule-map RULE-401a-1 condition SERVICE_401_UPGRADED_INTERNET event service-start subscriber condition-map match-all SERVICE_401_INTERNET match identifier service-name SERVICE_401_INTERNET [FALSE] subscriber rule-map RULE-401a-1 condition SERVICE_401_INTERNET event service-start subscriber condition-map match-all SERVICE_401_INTERNET_UP match identifier service-name SERVICE_401_INTERNET_UP [FALSE] subscriber rule-map RULE-401a-1 condition SERVICE_401_INTERNET_UP event service-start subscriber condition-map match-all SERVICE_401_INTERNET match identifier service-name SERVICE_401_INTERNET [TRUE] subscriber rule-map RULE-401a-1 condition SERVICE_401_INTERNET event service-start 1 service-policy type service unapply name L4_REDIRECT_SERVICE_NOTSERV 2 service-policy type service unapply name SERVICE_401_INTERNET 3 service-policy type service identifier service-name subscriber condition-map match-all SERVICE_401_INTERNET match identifier service-name SERVICE_401_INTERNET [TRUE] subscriber rule-map RULE-401a-1 condition SERVICE_401_INTERNET event service-stop 1 service-policy type service unapply identifier service-name 2 service-policy type service name L4_REDIRECT_SERVICE_NOTSERV Session inbound features: Feature: IP Idle Timeout Timeout value is 600 Idle time is 00:00:02 Feature: Session accounting Method List: BH_ACCNT_LIST Packets = 52, Bytes = 6607 Feature: Layer 4 Redirect Rule table is empty Traffic classes: Traffic class session ID: 126 ACL Name: GAM_ACL_IN, Packets = 3, Bytes = 144 Traffic class session ID: 128 ACL Name: ACL_IN_WWW, Packets = 5, Bytes = 682 Default traffic is dropped Unmatched Packets (dropped) = 44, Re-classified packets (redirected) = 5 Session outbound features: Feature: Session accounting Method List: BH_ACCNT_LIST Packets = 6, Bytes = 2087 Traffic classes: Traffic class session ID: 126 ACL Name: GAM_ACL_OUT, Packets = 0, Bytes = 0 Traffic class session ID: 128 ACL Name: ACL_OUT_WWW, Packets = 6, Bytes = 2087 Default traffic is dropped Unmatched Packets (dropped) = 0, Re-classified packets (redirected) = 0 Configuration sources associated with this session: Service: L4_REDIRECT_SERVICE_NOTSERV, Active Time = 00:00:56 Service: GAMING, Active Time = 00:00:56 Interface: GigabitEthernet0/1.4000100, Active Time = 00:00:56 Router# В таком виде всё работает ... Если пополнить счёт , и активировать на портале услугу SERVICE_INTERNET , то у абонента появится доступ в интернет ... Тут проблемы то нет ...( ps по предыдущему посту - а приоритет сервисов как проставляется ? в policy-map ?

Ваше сообщение
Имя*:
EMail:	Для отправки новых сообщений в текущей нити на email укажите знак ! перед адресом, например, !user@host.ru (!! - не показывать email). Более тонкая настройка отправки ответов производится в профиле зарегистрированного участника форума.
Заголовок*:
Сообщение*:	>>нужна доп инфа >>авторизуйтесь клиентом lab123 - качайте пока не закончатся деньги >>т.е. пока вас не выкинет на портал >>после этого дайте вывод >>sh sss session username lab123 det \| b Active services associated >>with session > В каком виде это сделать ? > как есть сейчас ? когда Сервис Интернет отключается и Включается сервис > L4_REDIRECT ? > Вот - > sh sss session detailed > Current Subscriber Information: Total sessions 1 > -------------------------------------------------- > Unique Session ID: 128 > Identifier: > SIP subscriber access type(s): Traffic-Class > Current SIP options: None > Session Up-time: 00:00:43, Last Changed: 00:00:43 > Policy information: > Context 03F4128C: Handle 0C0000F3 > AAA_id 0000003D: Flow_handle 0 > Authentication status: unauthen > Downloaded User profile, including services: > username > "0/0/1/100.4000" > l4redirect > "redirect list 199 to group PERIODIC_L4R_NOTSERV" > traffic-class > "out default drop" > traffic-class > "in default drop" > traffic-class > "in access-group name ACL_IN_WWW" > traffic-class > "out access-group name ACL_OUT_WWW" > Config history for session (recent to oldest): > Access-type: Max Client: Service Command-Handler > Policy event: None (Service) > Profile name: L4_REDIRECT_SERVICE_NOTSERV, 4 references > username > "0/0/1/100.4000" > l4redirect > "redirect list 199 to > group PERIODIC_L4R_NOTSERV" > traffic-class > "out default drop" > traffic-class > "in default drop" > traffic-class > "in access-group name ACL_IN_WWW" > traffic-class > "out access-group name ACL_OUT_WWW" > Session inbound features: > Feature: Layer 4 Redirect > Rule Cfg Definition > #1 SVC Redirect list 199 to > group PERIODIC_L4R_NOTSERV > Configuration sources associated with this session: > Service: L4_REDIRECT_SERVICE_NOTSERV, Active Time = 00:00:44 > -------------------------------------------------- > Unique Session ID: 126 > Identifier: > SIP subscriber access type(s): Traffic-Class > Current SIP options: None > Session Up-time: 00:00:44, Last Changed: 00:00:44 > Policy information: > Context 03F41114: Handle 6A0000EF > AAA_id 0000003D: Flow_handle 0 > Authentication status: unauthen > Downloaded User profile, including services: > username > "0/0/1/100.4000" > traffic-class > "in access-group name GAM_ACL_IN priority 40" > traffic-class > "out access-group name GAM_ACL_OUT priority 40" > traffic-class > "out default drop" > traffic-class > "in default drop" > ssg-service-info "IGAMING" > ssg-service-info "QD;1024000;1024000" > ssg-service-info "QU:512000;512000" > Config history for session (recent to oldest): > Access-type: Web-service-logon Client: Service Command-Handler > Policy event: Service-Start (Service) > Profile name: GAMING, 4 references > username > "0/0/1/100.4000" > traffic-class > "in access-group name GAM_ACL_IN priority 40" > traffic-class > "out access-group name GAM_ACL_OUT priority 40" > traffic-class > "out default drop" > traffic-class > "in default drop" > ssg-service-info > "IGAMING" > ssg-service-info > "QD;1024000;1024000" > ssg-service-info > "QU:512000;512000" > Session inbound features: > Feature: Policing > Upstream Params: > Average rate = 512000, Normal burst = 96000, Excess burst = 192000 > Config level = Service > Session outbound features: > Feature: Policing > Dnstream Params: > Average rate = 1024000, Normal burst = 1024000, Excess burst = 0 > Config level = Service > Configuration sources associated with this session: > Service: GAMING, Active Time = 00:00:46 > -------------------------------------------------- > Unique Session ID: 125 > Identifier: 0/0/1/100.4000 > SIP subscriber access type(s): IP > Current SIP options: Req Fwding/Req Fwded > Session Up-time: 00:00:46, Last Changed: 00:00:46 > Policy information: > Context 03F41404: Handle 7B0000EE > AAA_id 0000003D: Flow_handle 0 > Authentication status: authen > Downloaded User profile, excluding services: > service-type > 1 [Login] > port-type > 12 [PPPoE over QinQ] > accounting-list "BH_ACCNT_LIST" > ssg-account-info "ASERVICE_401_INTERNET" > ssg-account-info "NSERVICE_401_INTERNET_UPS" > ssg-account-info "AGAMING" > ssg-account-info "NL4_REDIRECT_SERVICE_NOTSERV" > idletime > 600 (0x258) > clid-mac-addr > 00 14 85 85 06 D1 > addr > 172.16.1.2 > netmask > 255.255.255.255 > config-source-dpm True > Downloaded User profile, including services: > service-type > 1 [Login] > port-type > 12 [PPPoE over QinQ] > accounting-list "BH_ACCNT_LIST" > ssg-account-info "ASERVICE_401_INTERNET" > ssg-account-info "NSERVICE_401_INTERNET_UPS" > ssg-account-info "AGAMING" > ssg-account-info "NL4_REDIRECT_SERVICE_NOTSERV" > idletime > 600 (0x258) > ssg-service-info "IGAMING" > ssg-service-info "QD;1024000;1024000" > ssg-service-info "QU:512000;512000" > clid-mac-addr > 00 14 85 85 06 D1 > addr > 172.16.1.2 > netmask > 255.255.255.255 > config-source-dpm True > username > "0/0/1/100.4000" > l4redirect > "redirect list 199 to group PERIODIC_L4R_NOTSERV" > traffic-class > "out default drop" > traffic-class > "in default drop" > traffic-class > "in access-group name ACL_IN_WWW" > traffic-class > "out access-group name ACL_OUT_WWW" > Config history for session (recent to oldest): > Access-type: Max Client: SM > Policy event: Notification Event (Service) > Profile name: L4_REDIRECT_SERVICE_NOTSERV, 4 references > username > "0/0/1/100.4000" > l4redirect > "redirect list 199 to > group PERIODIC_L4R_NOTSERV" > traffic-class > "out default drop" > traffic-class > "in default drop" > traffic-class > "in access-group name ACL_IN_WWW" > traffic-class > "out access-group name ACL_OUT_WWW" > Access-type: Web-service-logon Client: SM > Policy event: Apply Config Success (Unapplied) (Service) > Profile name: SERVICE_401_INTERNET, 3 references > username > "0/0/1/100.4000" > accounting-list > "BH_ACCNT_LIST" > traffic-class > "in access-group name ACL_IN_INT priority 30" > traffic-class > "out access-group name ACL_OUT_INT priority 30" > traffic-class > "out default drop" > traffic-class > "in default drop" > ssg-service-info > "QD;1024000;1024000" > ssg-service-info > "QU:512000;512000" > ssg-service-info > "ISERVICE_401_INTERNET" > Access-type: IP Client: DHCP > Policy event: Session-Update > Profile name: apply-config-only, 2 references > clid-mac-addr > 00 14 85 85 06 D1 > addr > > 172.16.1.2 > netmask > 255.255.255.255 > config-source-dpm > True > Access-type: Web-service-logon Client: SM > Policy event: Apply Config Success (Service) > Profile name: SERVICE_401_INTERNET, 3 references > username > "0/0/1/100.4000" > accounting-list > "BH_ACCNT_LIST" > traffic-class > "in access-group name ACL_IN_INT priority 30" > traffic-class > "out access-group name ACL_OUT_INT priority 30" > traffic-class > "out default drop" > traffic-class > "in default drop" > ssg-service-info > "QD;1024000;1024000" > ssg-service-info > "QU:512000;512000" > ssg-service-info > "ISERVICE_401_INTERNET" > Access-type: Web-service-logon Client: SM > Policy event: Apply Config Success (Service) > Profile name: GAMING, 4 references > username > "0/0/1/100.4000" > traffic-class > "in access-group name GAM_ACL_IN priority 40" > traffic-class > "out access-group name GAM_ACL_OUT priority 40" > traffic-class > "out default drop" > traffic-class > "in default drop" > ssg-service-info > "IGAMING" > ssg-service-info > "QD;1024000;1024000" > ssg-service-info > "QU:512000;512000" > Access-type: IP Client: SM > Policy event: Service Selection Request > Profile name: nas-port:172.16.4.4:0/0/1/100.4000, 2 references > service-type > 1 [Login] > port-type > 12 [PPPoE over > QinQ] > accounting-list > "BH_ACCNT_LIST" > ssg-account-info > "ASERVICE_401_INTERNET" > ssg-account-info > "NSERVICE_401_INTERNET_UPS" > ssg-account-info > "AGAMING" > ssg-account-info > "NL4_REDIRECT_SERVICE_NOTSERV" > idletime > 600 (0x258) > Active services associated with session: > name "L4_REDIRECT_SERVICE_NOTSERV" > name "GAMING" > Rules, actions and conditions executed: > subscriber rule-map RULE-401a-1 > condition always event session-start > 1 authorize identifier nas-port > subscriber condition-map match-all SERVICE_401_UPGRADED_INTERNET > match identifier > service-name SERVICE_401_UPGRADED_INTERNET [FALSE] > subscriber rule-map RULE-401a-1 > condition SERVICE_401_UPGRADED_INTERNET event service-start > subscriber condition-map match-all SERVICE_401_INTERNET > match identifier > service-name SERVICE_401_INTERNET [FALSE] > subscriber rule-map RULE-401a-1 > condition SERVICE_401_INTERNET event service-start > subscriber condition-map match-all SERVICE_401_INTERNET_UP > match identifier > service-name SERVICE_401_INTERNET_UP [FALSE] > subscriber rule-map RULE-401a-1 > condition SERVICE_401_INTERNET_UP event service-start > subscriber condition-map match-all SERVICE_401_INTERNET > match identifier > service-name SERVICE_401_INTERNET [TRUE] > subscriber rule-map RULE-401a-1 > condition SERVICE_401_INTERNET event service-start > 1 service-policy type service > unapply name L4_REDIRECT_SERVICE_NOTSERV > 2 service-policy type service > unapply name SERVICE_401_INTERNET > 3 service-policy type service > identifier service-name > subscriber condition-map match-all SERVICE_401_INTERNET > match identifier > service-name SERVICE_401_INTERNET [TRUE] > subscriber rule-map RULE-401a-1 > condition SERVICE_401_INTERNET event service-stop > 1 service-policy type service > unapply identifier service-name > 2 service-policy type service > name L4_REDIRECT_SERVICE_NOTSERV > Session inbound features: > Feature: IP Idle Timeout > Timeout value is 600 > Idle time is 00:00:02 > Feature: Session accounting > Method List: BH_ACCNT_LIST > Packets = 52, Bytes = 6607 > Feature: Layer 4 Redirect > Rule table is empty > Traffic classes: > Traffic class session ID: 126 > ACL Name: GAM_ACL_IN, Packets = 3, Bytes = 144 > Traffic class session ID: 128 > ACL Name: ACL_IN_WWW, Packets = 5, Bytes = 682 > Default traffic is dropped > Unmatched Packets (dropped) = 44, Re-classified packets (redirected) = 5 > Session outbound features: > Feature: Session accounting > Method List: BH_ACCNT_LIST > Packets = 6, Bytes = 2087 > Traffic classes: > Traffic class session ID: 126 > ACL Name: GAM_ACL_OUT, Packets = 0, Bytes = 0 > Traffic class session ID: 128 > ACL Name: ACL_OUT_WWW, Packets = 6, Bytes = 2087 > Default traffic is dropped > Unmatched Packets (dropped) = 0, Re-classified packets (redirected) = 0 > Configuration sources associated with this session: > Service: L4_REDIRECT_SERVICE_NOTSERV, Active Time = 00:00:56 > Service: GAMING, Active Time = 00:00:56 > Interface: GigabitEthernet0/1.4000100, Active Time = 00:00:56 > Router# > В таком виде всё работает ... > Если пополнить счёт , и активировать на портале услугу SERVICE_INTERNET , то > у абонента появится доступ в интернет ... > Тут проблемы то нет ...( > ps > по предыдущему посту - а приоритет сервисов как проставляется ? в policy-map > ?
	Введите код, изображенный на картинке:

При общении не допускается: неуважительное отношение к собеседнику, хамство, унизительное обращение, ненормативная лексика, переход на личности, агрессивное поведение, обесценивание собеседника, провоцирование флейма голословными и заведомо ложными заявлениями. Не отвечайте на сообщения, явно нарушающие правила - удаляются не только сами нарушения, но и все ответы на них. Лог модерирования.

Партнёры:

Хостинг:

Закладки на сайте
Проследить за страницей

Created 1996-2024 by Maxim Chirkov
Добавить, Поддержать, Вебмастеру