X-Git-Url: http://git.sameswireless.fr/l2tpns.git/blobdiff_plain/e04b708a1febf20bac292c05e9e3a67655f5bce3..667a8bc42060ce5d62ff93058586ce7925ba4449:/Docs/startup-config.5 diff --git a/Docs/startup-config.5 b/Docs/startup-config.5 index 3ced03f..61d1386 100644 --- a/Docs/startup-config.5 +++ b/Docs/startup-config.5 @@ -2,7 +2,7 @@ .de Id .ds Dt \\$4 \\$5 .. -.Id $Id: startup-config.5,v 1.3 2004/11/29 06:29:28 bodea Exp $ +.Id $Id: startup-config.5,v 1.14 2005/09/15 09:34:49 bodea Exp $ .TH STARTUP-CONFIG 5 "\*(Dt" L2TPNS "File Formats and Conventions" .SH NAME startup\-config \- configuration file for l2tpns @@ -51,6 +51,11 @@ is any one of the syslog logging facilities, such as If set, the process id will be written to the specified file. The value must be an absolute path. .TP +.B random_device +Path to random data source (default +.BR /dev/urandom ). +Use "" to use the rand() library function. +.TP .B l2tp_secret The secret used by .B l2tpns @@ -58,19 +63,24 @@ for authenticating tunnel request. Must be the same as the LAC, or authentication will fail. Only actually be used if the LAC requests authentication. .TP +.B ppp_restart_time +Restart timer for PPP protocol negotiation in seconds (default: 3). +.TP +.B ppp_max_configure +Number of configure requests to send before giving up (default: 10). +.TP +.B ppp_max_failure +Number of Configure-Nak requests to send before sending a +Configure-Reject (default: 5). +.TP +.B ppp_mru +PPP link MRU (default: 1452). +.TP .BR primary_dns , " secondary_dns" Whenever a PPP connection is established, DNS servers will be sent to the user, both a primary and a secondary. If either is set to 0.0.0.0, then that one will not be sent. .TP -.B save_state -When -.B l2tpns -receives a STGTERM it will write out its current ip_address_pool, -session and tunnel tables to disk prior to exiting to be re-loaded at -startup. The validity of this data is obviously quite short and the -intent is to allow an sessions to be retained over a software upgrade. -.TP .BR primary_radius , " secondary_radius" Sets the RADIUS servers used for both authentication and accounting. If the primary server does not respond, then the secondary RADIUS @@ -90,9 +100,28 @@ and a .B Stop record when the session is closed. .TP +.B radius_interim +If +.B radius_accounting +is on, defines the interval between sending of RADIUS interim +accounting records (in seconds). +.TP .B radius_secret Secret to be used in RADIUS packets. .TP +.B radius_authtypes +A comma separated list of supported RADIUS authentication methods +("pap" or "chap"), in order of preference (default "pap"). +.TP +.B radius_dae_port +Port for DAE RADIUS (Packet of Death/Disconnect, Change of Authorization) +requests (default: 3799). +.TP +.B allow_duplicate_users +Allow multiple logins with the same username. If false (the default), +any prior session with the same username will be dropped when a new +session is established. +.TP .B bind_address When the tun interface is created, it is assigned the address specified here. If no address is given, 1.1.1.1 is used. Packets @@ -105,7 +134,7 @@ Address to send to clients as the default gateway. .B send_garp Determines whether or not to send a gratuitous ARP for the .B bind_address -when the server is ready to handle traffic (default: true). This +when the server is ready to handle traffic (default: true). This setting is ignored if BGP is configured. .TP .B throttle_speed @@ -127,13 +156,9 @@ doesn't work properly. If set to true, then the current bandwidth utilization will be logged every second. Even if this is disabled, you can see this information by running the -.B -uptime +.B uptime command on the CLI. .TP -.B cleanup_interval -Interval between regular cleanups (in seconds). -.TP .B multi_read_count Number of packets to read off each of the UDP and TUN fds when returned as readable by select (default: 10). Avoids incurring the @@ -160,12 +185,21 @@ process in memory. .B icmp_rate Maximum number of host unreachable ICMP packets to send per second. .TP +.B packet_limit +Maximum number of packets of downstream traffic to be handled each +tenth of a second per session. If zero, no limit is applied (default: +0). Intended as a DoS prevention mechanism and not a general +throttling control (packets are dropped, not queued). +.TP .B cluster_address Multicast cluster address (default: 239.192.13.13). .TP .B cluster_interface Interface for cluster packets (default: eth0). .TP +.B cluster_mcast_ttl +TTL for multicast packets (default: 1). +.TP .B cluster_hb_interval Interval in tenths of a second between cluster heartbeat/pings. .TP @@ -173,6 +207,15 @@ Interval in tenths of a second between cluster heartbeat/pings. Cluster heartbeat timeout in tenths of a second. A new master will be elected when this interval has been passed without seeing a heartbeat from the master. +.TP +.B cluster_master_min_adv +Determines the minumum number of up to date slaves required before the +master will drop routes (default: 1). +.TP +.B ipv6_prefix +Enable negotiation of IPv6. This forms the the first 64 bits of the +client allocated address. The remaining 64 come from the allocated +IPv4 address and 4 bytes of 0s. .RE .SS BGP ROUTING The routing configuration section is entered by the command