The RADIUS client can request RADIUS attributes, such as the "Framed-IP-Address", from an external RADIUS server and provide these, for example, to a PPPoE server in order to authenticate them at PPPoE, PPTP or L2TP servers. The device accepts the following attributes in access-accept messages:
- 96
- Framed-Interface-ID
- This attribute conveys the IPv6 interface identifier that should be configured for the user in the IPv6CP.
- 97
- Framed-IPv6-Prefix
- Prefix, which is sent to the user via router advertisements.
- 99
- Framed-IPv6-Route
- This attribute conveys the route to be used for this user. The device supplements the IPv6 routing table with this route and the next hop to this user.
- 100
- Framed-IPv6-Pool
- This indicates the IPv6 pool from which a prefix is to be taken for the user. The IPv6 pool is referenced by its name and must be present under .
- 123
- Delegated-IPv6-Prefix
- Prefix, which is sent to the user via DHCPv6 prefix delegation.
The newly available RADIUS attributes are implemented according to RFC 3162 and RFC 4818. An example for a PPP user test with IPv6 in the FreeRADIUS is as follows:
test Cleartext-Password := "1234"
Service-Type = Framed-User,
Framed-Protocol = PPP,
Framed-IPv6-Prefix = "fec0:1:2400:1::/64",
Delegated-IPv6-Prefix = "fec0:1:2400:1100::/56",
Framed-IP-Address = 172.16.3.33,
The user “test” in a dual-stack PPP session receives the IPv4 address 172.16.3.33, the prefix fec0:1:2400:1::/64 via router advertisement, and the prefix fec0:1:2400:1100::/56 via DHCPv6 prefix delegation.
