Restrict certain users to certain clients

inetjunkmail inetjunkmail at gmail.com
Thu Nov 4 20:30:59 CET 2010


I have clients multiple clients on the following networks:

192.168.89.0/24
192.168.90.0/24
192.168.91.0/24

I have two users:

test1
test2

I would like to grant test1 access to clients on 192.168.89.0/24 and
192.168.90.0/24 but not 192.168.91.0/24.
I would like to grant test2 access to clients on 192.168.91.0/24 but not
192.168.89.0/24 nor 192.168.90.0/24.

I've solved it with huntgroups with individual client IP's but I need to do
it by subnet.

I thought the following would work but it didn't.

/etc/raddb/huntgroups
hunt1        NAS-IP-Address =~ /^192\.168\.(89|90|91)\..*$/

Can anyone provide some direction?

Thanks
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20101104/16cb7a8d/attachment.html>


More information about the Freeradius-Users mailing list