  Configuration and Defaults' Settings


  Here it's possible to define the configuration for Portslave and the
  defaults for ports' definitions.

  The general configuration affects the general operations of Portslave.

  The defaults' settings are the ones which will be used for each port
  defined in Portslave, unless the port has its own definition for a
  specified item, so it would be used instead the default value.


  11..  ((GGlloobbaall)) SSeettttiinnggss

  Here are defined the general configurations which will be applied to
  the whole Portslave system.


  11..11..  HHoossttnnaammee

  The machine's hostname.

  11..22..  IIPP nnuummbbeerr

  This machine's IP number (often ommited).

  11..33..  LLoocckk ddiirreeccttoorryy

  The directory for lock files.

  11..44..  RReemmoottee llooggiinn

  The executable to call when entering in remote login mode.

  11..55..  PPPPPPdd

  The executable to call as PPP daemon (normally the Portslave's own
  PPPd is going to be used since it has some necessary extensions on it)

  11..66..  TTeellnneett

  The executable to call when entering in telnet mode.

  11..77..  SSSSHH

  The executable to call when entering in SSH mode.

  11..88..  LLooccaall llooggiinnss

  When active, allows login using the local machine's account.

  This is useful for maintenance when, for some reason, the accounting
  host is unreachable or down.

  The login name must be provided with a '!' as prefix in order to be
  recognized as a local account.

  11..99..  SSyysslloogg

  The machine which will take care of system logging.

  If you want to log locally, leave this field empty.


  11..1100..  FFaacciilliittyy

  Sets the syslog facility.

  11..1111..  FFiilltteerr ddiirreeccttoorryy

  Directory where your scripts that set up IP filtering (typically using
  ipfwadmin) are stored.

  To invoke them, just add the RADIUS-attribute Framed-Filter-Id = "foo"
  to your profile, where foo is the name of script.

  11..1122..  SSttrriipp nnaammeess

  If enabled, leading "P", "S", "C", "L" or "!" characters and trailing
  ".slip", ".cslip" and ".ppp" strings will be stripped from the
  username before it is recorded in the system utmp and wtmp files (if
  sysutmp or syswtmp are turned on, of course).


  22..  PPoorrtt DDeeffaauullttss -- NNeettwwoorrkk

  Here are defined the defaults for each port defined in Portslave.

  The defaults' settings are the ones which will be used for each port
  defined in Portslave, unless the port has its own definition for a
  specified item, so it would be used instead the default value.

  Here you're able to configure network aspects of the port.


  22..11..  DDeebbuugg

  If enabled, dumps extra debug information to be dumped to syslog.

  22..22..  AAuutthh ttyyppee

  Authentication type.

  Example: such as radius.

  22..33..  AAuutthh hhoosstt 11

  Primary authentication host to be used.

  22..44..  AAuutthh hhoosstt 22

  Secondary authentication host to be used when primary authentication
  host is unreachable or down.

  This definition is optional.

  22..55..  AAcccctt hhoosstt 11

  Primary accounting host to be used.

  Usually this is the same host as the authentication host.

  22..66..  AAcccctt hhoosstt 22

  Secondary accounting host to be used when primary accounting host is
  unreachable or down.

  Usually this is the same as the secondary authentication host.

  This definition is optional.

  22..77..  RRAADD ttiimmeeoouutt

  Retry timeout for authentication and accounting requests.

  22..88..  RReeaallmmss ddeeffiinniittiioonnss

  Again, user@host login names are recognized, but the @host part is
  used to select different authentication/accounting hosts.

  In the first example, all four hosts are actually defined; in the
  second, there is only one authentication and one accounting host.

  Undefined hosts must be represented by empty strings (double quotes).

  The order is @realm authhost1 accthost1 authhost2 accthost2.

  the suffix if providing a login service.

  which does what UUCPHACK has existed for.

  22..99..  SSeeccrreett

  The shared secret for RADIUS (pssst! don't tell anyone).

  22..1100..  PPrroottooccooll

  Protocol to be used in sessions.

  22..1111..  HHoosstt

  Hostname used.

  22..1122..  IIPP nnuummbbeerr

  IP assigned to port.

  This setting is usually used with the 'Auto generated IPs' option.

  22..1133..  AAuuttoo ggeenneerraatteedd IIPPss

  When enabled the portnumber will be added to the 'IP number' given, so
  different IPs will be automatically assigned to each port.

  Using this option there's no need to define IPs port-by-port, saving
  administrator's time.

  22..1144..  NNeettmmaasskk

  Leave this to 255.255.255.255 unless you really know what you're
  doing.

  22..1155..  MMTTUU

  Self explanatory.


  33..  PPoorrtt DDeeffaauullttss -- CCoommmm

  Here are defined the defaults for each port defined in Portslave.

  The defaults' settings are the ones which will be used for each port
  defined in Portslave, unless the port has its own definition for a
  specified item, so it would be used instead the default value.
  Here you may configure the communications aspects of the port, such as
  serial port configuration, modem-related settings, etc.

  33..11..  IIssssuuee

  Standard message that is issued on connect.

  This string may contain some 'keys' that expands to port number, etc.

  33..22..  PPrroommpptt

  Login prompt.

  33..33..  TTeerrmm ttyyppee

  Term type for rlogin/telnet sessions.

  33..44..  UUppddaattee uuttmmpp // UUppddaattee wwttmmpp

  If you want portslave to update the utmp and/or wtmp files just like a
  regular getty/login, enable these.

  33..55..  PPoorrtt ttyyppee

  Port type (passed to Radius for logging).

  33..66..  SSppeeeedd

  Serial port speed. All ports are set to 8N1.

  33..77..  MMooddeemm iinniitt cchhaatt

  Use this to initialize the modem.

  d == delay (1 sec), p == pause (0.1 sec), l == toggle DTR, r == CR, l
  == LF

  33..88..  WWaaiitt ffoorr

  Wait for this modem's message to pick the call.

  Use this *OR* auto-answer.

  33..99..  AAnnsswweerr

  Chat string to get the modem to connect after waitfor.

  The @ sign matches (.*)[\r\n] in regexp code, the match is logged to
  Radius as Connection-Info.

  33..1100..  AAuuttoo aannsswweerr

  If you enable this, the system will just wait for the DCD line to get
  high (you won't get the connection info either).

  33..1111..  CChheecckk ttiimmee

  How often to check if the modem is still alive.

  Time is in minutes

  33..1122..  CChheecckk cchhaatt

  The chat string for checking if the modem is still alive.


  33..1133..  FFllooww ccoonnttrrooll

  Flow control on this serial port:

  Hardware (RTS/CTS), software (CTRL-S, CTRL-Q) or none.

  33..1144..  UUssee DDCCDD lliinnee

  Use the DCD line or not (this sets CLOCAL if on).

  This means that the session will get hung up if the modem hangs up.

  33..1155..  AAuuttoo PPPPPP

  PPP options - used if we autodetect a PPP session.

  Note that we set mru and mtu both to the MTU setting.

  (pppd 2.3.x  -- Linux 2.2, or Linux 2.0 patched)

  33..1166..  PPPPPP ooppttiioonnss

  PPP options - User already authenticated and service type is PPP.

  (pppd 2.3.x  -- Linux 2.2, or Linux 2.0 patched)