08-26-2008 02:10 AM - edited 03-06-2019 12:59 AM
I know that Cisco 7200 has function "Service Selection Gateway"(SSG),
I want to enable SSG function and recevie dynamic authortication,
used command as follow :
ssg enable
ssg radius-helper auth-port 3799 acct-port 3780
ssg radius-helper key cisco
then Let Radius Server send RADIUS packets to port 3799ï¼but device respond
"port not reach."ï¼I think because port didn't be opened,
but how does it enable SSG feature? pls which Hero tell me a method.
08-26-2008 03:03 AM
Hello Simec,
a good reference for SSG
http://www.cisco.com/en/US/docs/ios/12_2/12_2b/12_2b8/feature/guide/ftssg15b.html
Try with the default ports:
Defaults
The default port number for acct-port is 1646.
The default port number for auth-port is 1645.
Are you sure RADIUS is using UDP port 3799 when talking to SSG ?
Hope to help
Giuseppe
08-26-2008 09:59 PM
Hi, Giuslar, thank you.
I have been read the guide that you refer.
as I know, between SSG and RADIUS Serverï¼its have some talking ways.
1) In a way, SSG send accountting/authentication Request
(RADIUS packet) to RADIUS Server,
and RADIUS Server respond the Response(RADIUS packet) to SSG.
2)In another way, RADIUS Server send dynamic authorization Request
(RADIUS packet) to SSGï¼and SSG respond the Response(RADIUS packet)
to SSG.
I want to enable the second way, but it isn't successful.
best regard
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide