 TomS_Git-r-donePremium,MVM
join:2002-07-19
Ireland
kudos:1
1 edit | reply to treichhart
Re: Do you guys monitor you network for spyware and virus? We're a Cisco shop, so the filter is just an ACL.
The ACL is applied to a users PPP session via RADIUS attributes, so to turn the filter on we add a couple of Cisco specific AV pairs to their RADIUS profile, and to turn it off we simply remove those AV pairs from their RADIUS profile.
After they make the change all that is required (after a short wait) is for them to disconnect/reconnect (turn modem on/off, or disconnect/reconnect via the web interface).
Now, the advantage of doing this with PPP sessions is that each users session has its own virtual interface on the LNS terminating the session. The ACL is simply applied to this interface which then filters traffic going to/comming from the customer, hence it can be turned on/off quite easily for individual customers.
This becomes a lot more complex with pure IP services as you can only apply a single ACL inbound and outbound to an interface on a Cisco. I dare not think how big and complicated the ACL would get to support multiple customers preferences .... 
edit: sorry, didnt really answer Mad Dawg's question. The control panel is an in-house thing. We are an ISP of the size where an in-house control panel is really the only one that makes sense (i.e. 140,000+ customers). |
|
1 edit | Thanks Tom
Sounds slick as hell
140K clients wow thats the largest wisp client base
Ive ever heard of congrats
I cant even fathom trying to manage that many
edit actually I guess with that number I wouldnt have to worry about it somebody else would --
Best Regards
MD |
|
|
|
TomS_Git-r-donePremium,MVM
join:2002-07-19
Ireland
kudos:1 | Actually its not 140k wireless customers, but 140k broadband customers. Quite a lot of those are on ADSL, but the same basic principles that we apply to our wireless stuff applies to them aswell. |
|
