Re: Mpd-4.2 released.

On Tuesday, 26 June 2007 at 18:50:23 +0300, Alexander Motin wrote:
Hi.

I'm glad to present version 4.2 of MPD. It includes many new features,
performance improvements and fixes.

The most significant and unique new feature of mpd-4.2 is a link
repeater functionality. It allows mpd to accept incoming connection of
any supported type and forward it out as same or different type outgoing
connection.
As example, this functionality allows mpd to implement real LAC with
accepting incoming PPPoE connection from client and forwarding it using
L2TP tunnel to LNS. All other software L2TP implementations I know is
only a LAC emulators without real incoming calls forwarding abilities.

Also mpd-4.2 presents:
- PPTP listening on multiple different IPs,
- L2TP tunnel authentication with shared secret,
- fast traffic filtering, shaping and rate-limiting using ng_bpf and
ng_car,
- new 'ext-auth' auth backend as full-featured local alternative to
'radius-auth',
- NetFlow generation for both incoming and outgoing packets same time,
- restored control console on stdin.

Replacing external ifconfig and route calls with their internal
implementations and other optimizations in 4.2 gave significant
performance boost in session management.
Newly implemented overload protection mechanism partially drops incoming
connection requests for periods of critical load by monitoring daemon's
internal message queue.
As result, simple 2GHz P4 system is now able to accept, authenticate and
completely process spike of 1000 concurrent PPPoE connections in just a
30 seconds.

Complete change log as always can be found at:
http://mpd.sourceforge.net/doc/mpd5.html

--
Alexander Motin
_______________________________________________
freebsd-net@xxxxxxxxxxx mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail to "freebsd-net-unsubscribe@xxxxxxxxxxx"

This is good news. Thanks Alex.
This is probably a new feature request, but is this possible to create
some kind of VirtualTemplate interface like it is in Cisco access
routers. Currently i have to configure bunch of different ng interfaces
for every kind user. However on my Cisco 7206VXR i can bundle physical
link together with VirtaulTemplate interface in one vpdn-group config
like this:

vpdn-template dslisp
description "dslisp LNS"
local name DSLISP
l2tp tunnel password 7 xxxxxxxxxxxxx

vpdn-group l2tp-301
accept-dialin
protocol l2tp
virtual-template 1
terminate-from hostname nexxia1006
lcp renegotiation always
source vpdn-template dslisp

interface Virtual-Template1
ip unnumbered GigabitEthernet0/1
ip mtu 1460
ip tcp header-compression
ip tcp adjust-mss 1460
load-interval 60
no peer default ip address
keepalive 30
ppp mru match
ppp encrypt mppe auto passive stateful
ppp authentication pap chap dslisprealm
ppp authorization dslisprealm
ppp accounting dslisprealm

And all the ppp interfaces for all users will use this configuration
as a template.

--
======================================================================
- Best regards, Nikolay Pavlov. <<<-----------------------------------
======================================================================

_______________________________________________
freebsd-net@xxxxxxxxxxx mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail to "freebsd-net-unsubscribe@xxxxxxxxxxx"