a router as NAS

Si St sigbj-st at operamail.com
Mon Jul 16 16:51:56 CEST 2012 

Q:Buxey:
Hi,
what makes you think you can send RADIUS requests to this router and for
it
to then send those requests to your server? 
A:Because the router documentation said it: 
"-WPA-Enterprise

    This option works with a RADIUS Server to authenticate wireless
    clients. Wireless clients should have established the necessary
    credentials before attempting to authenticate to the Server through
    this Gateway. Furthermore, it may be necessary to configure the
    RADIUS Server to allow this Gateway to authenticate users."

I really cant help for that the docu is unprecise, has lacks etc. The
"credentials " and understand as certs, the "configure" is very sparse
if PORTS have to be taken in consideration. - But we are really getting
somewhere taking PORTS into my knowledge. But I do not how to configure
this and where. If the router has the 1812 configured I would assume
that radius would return through the same port. I will try to read
through the files in raddb to find something about it. Could
/etc/service give a clue? 

-- 
  Si St
  sigbj-st at operamail.com


On Mon, Jul 16, 2012, at 08:57 AM, Andrew Antonopoulos wrote:
> Hi ,
> 
> Alan is right. If you connect you pc directly to you router then you must
> configure the port to accept dot1x request usually they call dot1x port
> control.
> 
> If you have wireless controller from the AAA settings you can test it and
> the same time you can see the request from the radius ( if you are
> running radiusd -X)
> 
> Regards,
> Andy Antonopoulos 
> 
> Sent from my iPhone
> 
> On 16 Jul 2012, at 08:52, alan buxey <A.L.M.Buxey at lboro.ac.uk> wrote:
> 
> > Hi,
> > 
> > what makes you think you can send RADIUS requests to this router and for it
> > to then send those requests to your server?  
> > 
> > if its a typical router, then it will ne acting as a NAS to directly connected
> > clients - and those clients will be sending their authentication to the NAS using
> > 802.1X (EAPOW or EAPOL) which then get taken by the RADIUS server and converted
> > to RADIUS over IP to the RADIUS server.
> > 
> > 
> > alan
> > 
> -
> List info/subscribe/unsubscribe? See
> http://www.freeradius.org/list/users.html

-- 
http://www.fastmail.fm - A fast, anti-spam email service.

More information about the Freeradius-Users mailing list