Thus spake farber@admin.f-tech.net
If you are trying to limit simeltanous-logins then the radius server you use would be the best place to deny the login.
by all accounts telneting into the ARC, doing a list conn and grepping the output for dup users sounds very error prone.
But then I think about the RADIUS server trying to keep track of the state on all the Arc's think of that as being very error prone. :) I agree, telnet'ing in and doing a list conn isn't the right solution either. The best solution I've found is to do essentially the list conn, but using SNMP ops to get the info. That's really what SNMP is *for*...with the Arc's cpu capacity, its actually quite fast...and we've not had any problems with false positives and we've not found any instances of false negatives. Obviously, this depends on the quality of the script and the checks that are done with it...but it seems to work quite well for us. :) -- Jeff McAdams Email: jeffm@iglou.com Head Network Administrator Voice: (502) 966-3848 IgLou Internet Services (800) 436-4456 - To unsubscribe to usr-tc, send an email to "majordomo@xmission.com" with "unsubscribe usr-tc" in the body of the message. For information on digests or retrieving files and old messages send "help" to the same address. Do not use quotes in your message.