Skip to content

Instantly share code, notes, and snippets.

@ganeshragnarayanan

ganeshragnarayanan/gist:987b20f8d4c086901cf93139e58306fa

Last active September 13, 2016 23:14
Show Gist options
  • Save ganeshragnarayanan/987b20f8d4c086901cf93139e58306fa to your computer and use it in GitHub Desktop.
Save ganeshragnarayanan/987b20f8d4c086901cf93139e58306fa to your computer and use it in GitHub Desktop.
Download ZIP
Tacacs Source Interface UT
Raw
gistfile1.txt
Using Management IP
===================
ip source-interface all address 172.17.0.2
common-auth-access
# here are the per-package modules (the "Primary" block)
auth [success=1 default=ignore] /usr/lib/security/libpam_tacplus.so debug server=10.0.0.75 secret=tac_test
login=pap timeout=5 src_namespace=/var/run/netns/nonet dstn_namespace=/var/run/netns/nonet source_ip=172.17.0.2
#
Using Loopback IP
===================
ip source-interface all address 13.0.13.2
auth [success=1 default=ignore] /usr/lib/security/libpam_tacplus.so debug server=10.0.0.75 secret=tac_test
login=pap timeout=5 src_namespace=/var/run/netns/nonet dstn_namespace=/var/run/netns/swns source_ip=13.0.13.2
ssh [email protected] - login success
tacacs server logs:
Tue Sep 13 21:45:46 2016 [78]: session.peerip is 13.0.13.2
Tue Sep 13 21:45:46 2016 [134]: connect from 13.0.13.2 [13.0.13.2]
Tue Sep 13 21:45:46 2016 [134]: pap-login query for 'user1' ssh from 13.0.13.2 accepted
Tue Sep 13 21:45:56 2016 [78]: session.peerip is 10.0.10.1
Tue Sep 13 21:45:56 2016 [135]: connect from 10.0.10.1 [10.0.10.1]
Tue Sep 13 21:45:56 2016 [135]: authorization query for 'user1' ssh from 10.0.10.1 accepted
Using Interface 1 IP
=====================
ip source-interface all address 10.0.10.1
auth [success=1 default=ignore] /usr/lib/security/libpam_tacplus.so debug server=10.0.0.75 secret=tac_test
login=pap timeout=5 src_namespace=/var/run/netns/nonet dstn_namespace=/var/run/netns/swns source_ip=10.0.10.1
ssh [email protected] - login success
Using Interface 2 IP
=====================
ip source-interface all address 20.0.0.1
auth [success=1 default=ignore] /usr/lib/security/libpam_tacplus.so debug server=10.0.0.75 secret=tac_test
login=pap timeout=5 src_namespace=/var/run/netns/nonet dstn_namespace=/var/run/netns/swns source_ip=20.0.0.1
Using Loopback Interface Name
==============================
ip source-interface all interface loopback1
auth [success=1 default=ignore] /usr/lib/security/libpam_tacplus.so debug server=10.0.0.75 secret=tac_test
login=pap timeout=5 src_namespace=/var/run/netns/nonet dstn_namespace=/var/run/netns/swns source_ip=13.0.13.2
ssh [email protected] - login success
tacacs server logs:
Tue Sep 13 21:48:03 2016 [78]: session.peerip is 13.0.13.2
Tue Sep 13 21:48:03 2016 [137]: connect from 13.0.13.2 [13.0.13.2]
Tue Sep 13 21:48:03 2016 [137]: pap-login query for 'user1' ssh from 13.0.13.2 accepted
Tue Sep 13 21:48:13 2016 [78]: session.peerip is 10.0.10.1
Tue Sep 13 21:48:13 2016 [138]: connect from 10.0.10.1 [10.0.10.1]
Tue Sep 13 21:48:13 2016 [138]: authorization query for 'user1' ssh from 10.0.10.1 accepted
Using 1 Interface Name
=======================
ip source-interface all interface 1
auth [success=1 default=ignore] /usr/lib/security/libpam_tacplus.so debug server=10.0.0.75 secret=tac_test
login=pap timeout=5 src_namespace=/var/run/netns/nonet dstn_namespace=/var/run/netns/swns source_ip=10.0.10.1
ssh [email protected] - login success
Using 2 Interface Name
=======================
ip source-interface all interface 2
auth [success=1 default=ignore] /usr/lib/security/libpam_tacplus.so debug server=10.0.0.75 secret=tac_test
login=pap timeout=5 src_namespace=/var/run/netns/nonet dstn_namespace=/var/run/netns/swns source_ip=20.0.0.1
No IP Source Interface Configuration
==========================================
no ip source-interface all
auth [success=1 default=ignore] /usr/lib/security/libpam_tacplus.so debug server=10.0.0.75 secret=tac_test
login=pap timeout=5
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment