Restrict to initial NAS used to logon

Alan DeKok aland at deployingradius.com
Thu Apr 10 23:26:43 CEST 2008


Tuc at T-B-O-H.NET wrote:
> 	Looking to restrict a user to only be able to log in
> and re-log in to the initial NAS they first ever logged onto.
> (Hotspot)  Looking at the radacct file where it looks like
> the check-items normally go against, I'm not seeing anything I
> can use as an identifier. The nasipaddress is always 0.0.0.0.
> Maybe calledstationid, except if we swap equipment out during
> the lifetime of a users id it won't match. 
> 
> 	Is anyone doing anything like this already?

  They usually use equipment that sends a NAS identifier.

  Or, use the "Packet-Src-IP-Address" attribute.

  Alan DeKok.



More information about the Freeradius-Users mailing list