>нужна доп инфа
>авторизуйтесь клиентом lab123 - качайте пока не закончатся деньги
>т.е. пока вас не выкинет на портал
>после этого дайте вывод
>sh sss session username lab123 det | b Active services associated
>with session В каком виде это сделать ?
как есть сейчас ? когда Сервис Интернет отключается и Включается сервис L4_REDIRECT ?
Вот -
sh sss session detailed
Current Subscriber Information: Total sessions 1
--------------------------------------------------
Unique Session ID: 128
Identifier:
SIP subscriber access type(s): Traffic-Class
Current SIP options: None
Session Up-time: 00:00:43, Last Changed: 00:00:43
Policy information:
Context 03F4128C: Handle 0C0000F3
AAA_id 0000003D: Flow_handle 0
Authentication status: unauthen
Downloaded User profile, including services:
username "0/0/1/100.4000"
l4redirect "redirect list 199 to group PERIODIC_L4R_NOTSERV"
traffic-class "out default drop"
traffic-class "in default drop"
traffic-class "in access-group name ACL_IN_WWW"
traffic-class "out access-group name ACL_OUT_WWW"
Config history for session (recent to oldest):
Access-type: Max Client: Service Command-Handler
Policy event: None (Service)
Profile name: L4_REDIRECT_SERVICE_NOTSERV, 4 references
username "0/0/1/100.4000"
l4redirect "redirect list 199 to group PERIODIC_L4R_NOTSERV"
traffic-class "out default drop"
traffic-class "in default drop"
traffic-class "in access-group name ACL_IN_WWW"
traffic-class "out access-group name ACL_OUT_WWW"
Session inbound features:
Feature: Layer 4 Redirect
Rule Cfg Definition
#1 SVC Redirect list 199 to group PERIODIC_L4R_NOTSERV
Configuration sources associated with this session:
Service: L4_REDIRECT_SERVICE_NOTSERV, Active Time = 00:00:44
--------------------------------------------------
Unique Session ID: 126
Identifier:
SIP subscriber access type(s): Traffic-Class
Current SIP options: None
Session Up-time: 00:00:44, Last Changed: 00:00:44
Policy information:
Context 03F41114: Handle 6A0000EF
AAA_id 0000003D: Flow_handle 0
Authentication status: unauthen
Downloaded User profile, including services:
username "0/0/1/100.4000"
traffic-class "in access-group name GAM_ACL_IN priority 40"
traffic-class "out access-group name GAM_ACL_OUT priority 40"
traffic-class "out default drop"
traffic-class "in default drop"
ssg-service-info "IGAMING"
ssg-service-info "QD;1024000;1024000"
ssg-service-info "QU:512000;512000"
Config history for session (recent to oldest):
Access-type: Web-service-logon Client: Service Command-Handler
Policy event: Service-Start (Service)
Profile name: GAMING, 4 references
username "0/0/1/100.4000"
traffic-class "in access-group name GAM_ACL_IN priority 40"
traffic-class "out access-group name GAM_ACL_OUT priority 40"
traffic-class "out default drop"
traffic-class "in default drop"
ssg-service-info "IGAMING"
ssg-service-info "QD;1024000;1024000"
ssg-service-info "QU:512000;512000"
Session inbound features:
Feature: Policing
Upstream Params:
Average rate = 512000, Normal burst = 96000, Excess burst = 192000
Config level = Service
Session outbound features:
Feature: Policing
Dnstream Params:
Average rate = 1024000, Normal burst = 1024000, Excess burst = 0
Config level = Service
Configuration sources associated with this session:
Service: GAMING, Active Time = 00:00:46
--------------------------------------------------
Unique Session ID: 125
Identifier: 0/0/1/100.4000
SIP subscriber access type(s): IP
Current SIP options: Req Fwding/Req Fwded
Session Up-time: 00:00:46, Last Changed: 00:00:46
Policy information:
Context 03F41404: Handle 7B0000EE
AAA_id 0000003D: Flow_handle 0
Authentication status: authen
Downloaded User profile, excluding services:
service-type 1 [Login]
port-type 12 [PPPoE over QinQ]
accounting-list "BH_ACCNT_LIST"
ssg-account-info "ASERVICE_401_INTERNET"
ssg-account-info "NSERVICE_401_INTERNET_UPS"
ssg-account-info "AGAMING"
ssg-account-info "NL4_REDIRECT_SERVICE_NOTSERV"
idletime 600 (0x258)
clid-mac-addr 00 14 85 85 06 D1
addr 172.16.1.2
netmask 255.255.255.255
config-source-dpm True
Downloaded User profile, including services:
service-type 1 [Login]
port-type 12 [PPPoE over QinQ]
accounting-list "BH_ACCNT_LIST"
ssg-account-info "ASERVICE_401_INTERNET"
ssg-account-info "NSERVICE_401_INTERNET_UPS"
ssg-account-info "AGAMING"
ssg-account-info "NL4_REDIRECT_SERVICE_NOTSERV"
idletime 600 (0x258)
ssg-service-info "IGAMING"
ssg-service-info "QD;1024000;1024000"
ssg-service-info "QU:512000;512000"
clid-mac-addr 00 14 85 85 06 D1
addr 172.16.1.2
netmask 255.255.255.255
config-source-dpm True
username "0/0/1/100.4000"
l4redirect "redirect list 199 to group PERIODIC_L4R_NOTSERV"
traffic-class "out default drop"
traffic-class "in default drop"
traffic-class "in access-group name ACL_IN_WWW"
traffic-class "out access-group name ACL_OUT_WWW"
Config history for session (recent to oldest):
Access-type: Max Client: SM
Policy event: Notification Event (Service)
Profile name: L4_REDIRECT_SERVICE_NOTSERV, 4 references
username "0/0/1/100.4000"
l4redirect "redirect list 199 to group PERIODIC_L4R_NOTSERV"
traffic-class "out default drop"
traffic-class "in default drop"
traffic-class "in access-group name ACL_IN_WWW"
traffic-class "out access-group name ACL_OUT_WWW"
Access-type: Web-service-logon Client: SM
Policy event: Apply Config Success (Unapplied) (Service)
Profile name: SERVICE_401_INTERNET, 3 references
username "0/0/1/100.4000"
accounting-list "BH_ACCNT_LIST"
traffic-class "in access-group name ACL_IN_INT priority 30"
traffic-class "out access-group name ACL_OUT_INT priority 30"
traffic-class "out default drop"
traffic-class "in default drop"
ssg-service-info "QD;1024000;1024000"
ssg-service-info "QU:512000;512000"
ssg-service-info "ISERVICE_401_INTERNET"
Access-type: IP Client: DHCP
Policy event: Session-Update
Profile name: apply-config-only, 2 references
clid-mac-addr 00 14 85 85 06 D1
addr 172.16.1.2
netmask 255.255.255.255
config-source-dpm True
Access-type: Web-service-logon Client: SM
Policy event: Apply Config Success (Service)
Profile name: SERVICE_401_INTERNET, 3 references
username "0/0/1/100.4000"
accounting-list "BH_ACCNT_LIST"
traffic-class "in access-group name ACL_IN_INT priority 30"
traffic-class "out access-group name ACL_OUT_INT priority 30"
traffic-class "out default drop"
traffic-class "in default drop"
ssg-service-info "QD;1024000;1024000"
ssg-service-info "QU:512000;512000"
ssg-service-info "ISERVICE_401_INTERNET"
Access-type: Web-service-logon Client: SM
Policy event: Apply Config Success (Service)
Profile name: GAMING, 4 references
username "0/0/1/100.4000"
traffic-class "in access-group name GAM_ACL_IN priority 40"
traffic-class "out access-group name GAM_ACL_OUT priority 40"
traffic-class "out default drop"
traffic-class "in default drop"
ssg-service-info "IGAMING"
ssg-service-info "QD;1024000;1024000"
ssg-service-info "QU:512000;512000"
Access-type: IP Client: SM
Policy event: Service Selection Request
Profile name: nas-port:172.16.4.4:0/0/1/100.4000, 2 references
service-type 1 [Login]
port-type 12 [PPPoE over QinQ]
accounting-list "BH_ACCNT_LIST"
ssg-account-info "ASERVICE_401_INTERNET"
ssg-account-info "NSERVICE_401_INTERNET_UPS"
ssg-account-info "AGAMING"
ssg-account-info "NL4_REDIRECT_SERVICE_NOTSERV"
idletime 600 (0x258)
Active services associated with session:
name "L4_REDIRECT_SERVICE_NOTSERV"
name "GAMING"
Rules, actions and conditions executed:
subscriber rule-map RULE-401a-1
condition always event session-start
1 authorize identifier nas-port
subscriber condition-map match-all SERVICE_401_UPGRADED_INTERNET
match identifier service-name SERVICE_401_UPGRADED_INTERNET [FALSE]
subscriber rule-map RULE-401a-1
condition SERVICE_401_UPGRADED_INTERNET event service-start
subscriber condition-map match-all SERVICE_401_INTERNET
match identifier service-name SERVICE_401_INTERNET [FALSE]
subscriber rule-map RULE-401a-1
condition SERVICE_401_INTERNET event service-start
subscriber condition-map match-all SERVICE_401_INTERNET_UP
match identifier service-name SERVICE_401_INTERNET_UP [FALSE]
subscriber rule-map RULE-401a-1
condition SERVICE_401_INTERNET_UP event service-start
subscriber condition-map match-all SERVICE_401_INTERNET
match identifier service-name SERVICE_401_INTERNET [TRUE]
subscriber rule-map RULE-401a-1
condition SERVICE_401_INTERNET event service-start
1 service-policy type service unapply name L4_REDIRECT_SERVICE_NOTSERV
2 service-policy type service unapply name SERVICE_401_INTERNET
3 service-policy type service identifier service-name
subscriber condition-map match-all SERVICE_401_INTERNET
match identifier service-name SERVICE_401_INTERNET [TRUE]
subscriber rule-map RULE-401a-1
condition SERVICE_401_INTERNET event service-stop
1 service-policy type service unapply identifier service-name
2 service-policy type service name L4_REDIRECT_SERVICE_NOTSERV
Session inbound features:
Feature: IP Idle Timeout
Timeout value is 600
Idle time is 00:00:02
Feature: Session accounting
Method List: BH_ACCNT_LIST
Packets = 52, Bytes = 6607
Feature: Layer 4 Redirect
Rule table is empty
Traffic classes:
Traffic class session ID: 126
ACL Name: GAM_ACL_IN, Packets = 3, Bytes = 144
Traffic class session ID: 128
ACL Name: ACL_IN_WWW, Packets = 5, Bytes = 682
Default traffic is dropped
Unmatched Packets (dropped) = 44, Re-classified packets (redirected) = 5
Session outbound features:
Feature: Session accounting
Method List: BH_ACCNT_LIST
Packets = 6, Bytes = 2087
Traffic classes:
Traffic class session ID: 126
ACL Name: GAM_ACL_OUT, Packets = 0, Bytes = 0
Traffic class session ID: 128
ACL Name: ACL_OUT_WWW, Packets = 6, Bytes = 2087
Default traffic is dropped
Unmatched Packets (dropped) = 0, Re-classified packets (redirected) = 0
Configuration sources associated with this session:
Service: L4_REDIRECT_SERVICE_NOTSERV, Active Time = 00:00:56
Service: GAMING, Active Time = 00:00:56
Interface: GigabitEthernet0/1.4000100, Active Time = 00:00:56
Router#
В таком виде всё работает ...
Если пополнить счёт , и активировать на портале услугу SERVICE_INTERNET , то у абонента появится доступ в интернет ...
Тут проблемы то нет ...(
ps
по предыдущему посту - а приоритет сервисов как проставляется ? в policy-map ?