Hash username or mac address to assign user to different vlan

Kenneth Marshall ktm at rice.edu
Fri Feb 18 16:05:41 CET 2011


On Fri, Feb 18, 2011 at 02:36:55PM +0000, Phil Mayers wrote:
> On 18/02/11 14:29, schilling wrote:
>> Could you share your configuration and perl script? So I can learn from 
>> it?
>> I am thinking of use ldap status to decide the pool, then hashing mac
>> address of the client to get different VLAN.
>
> It seems like a lot of people are suddenly wanting to do this.
>
> Can any of you explain why, and why now? Just curious. It seems odd that so 
> many people want to do it, all at the same time.
>
> Did an article appear online or in a magazine or something ;o)

If you need to spread a userbase across network hardware efficiently,
you need to do something like this. With the increased importance of
security on a network, this sort of process is needed and simply
reflects a growing attention to security overall and the prevelance
of 802.1x.

Cheers,
Ken



More information about the Freeradius-Users mailing list