I'm running XR version 4.2.1 on an ASR9010 with RSP440. (went through all mandatory SMUs when upgraded from 4.2.0,etc). I'm trying to run radius AAA authen/autho on it and radius packets originating from interface loopback X is a must.
For some reason, all radius packets are being originated from the Ip address of the uplink interface (G0/5/0/0).
LC/0/5/CPU0:Jul 16 12:30:59.632 : radiusd: rctx found is 0x504a2b18
LC/0/5/CPU0:Jul 16 12:30:59.632 : radiusd: Reached retry count for the server 3,Trying to move to next server
LC/0/5/CPU0:Jul 16 12:30:59.632 : radiusd: Server X.X.X.X/1812/1813 is UP & Quarantined: NO
LC/0/5/CPU0:Jul 16 12:30:59.632 : radiusd: rad_nas_reply_to_client: Received response from id : 39,packet type 1
aaa authorization subscriber TESTRADIUS group radius group xxxx
aaa authentication subscriber TESTRADIUS group radius group xxxx
aaa authentication ppp TESTRADIUS group xxxx
aaa authentication login default local
I'm not sure if it's relevant, but I'm running BNG funcionality and the source-interface command for the tftp server seemed to work just fine. Can't find any SMUs that would solve this issue on 4.2.0 or 4.2.1. Saw a post from another guy that saw this same behavior on 3.8.2 but his post was not answered.
Help anyone? Is there a special command other than what I pasted here that I might be missing?
In EVPN A/A + IRB both PE in same EVI have BVI playing a default GW role. Its not supported to have BVI to be shutdown on one of PEs, In this case if if traffic hit this PE with DMAc equal to BVI Custom MAC, then it will drop this traffic du...
Crosswork Cloud - Crosswork Traffic Analysis - FAQ
Crosswork Cloud - Crosswork Traffic Analysis is a Cloud-hosted Software as a Service platform that provides Netflow based Traffic Analytics. The Crosswork Traffic Analysis platform Traffic Analysis, Peeri...
Cisco Champion Radio · S8|E9 Innovations to Achieve a Trustworthy Infrastructure
How do you know for certain that a router in your network has not been altered with since you deployed it? Wouldn’t it be great if you can cryptographically challenge your r...
IOS upgrade on asr9xx mandates rommon upgrades sometimes while they can be optional at other times. You may land up in unwanted situation if proper procedure is not followed during upgrades.
This article will include complete details about rommon ...
In some situation NCS560 RP become unresponsive after reload or powercycle.
In many NCS560 deployments are in remote location, deployment might be large and human intervention should be kept at minimum
Engineering team have been working on a str...