NAS-IP-Address Match Using Groups - Freeradius 3.0
Alan DeKok
aland at deployingradius.com
Fri Feb 21 14:21:17 CET 2020
On Feb 21, 2020, at 12:26 PM, Ope Abe <mide.groupon at gmail.com> wrote:
> I am newbie and learning how to use freeradius 3.0 and I wanted to
> configure a match criteria in both users file and hints file to perform a
> specific action when RADIUS auth requests are received from a specific
> range of NAS IP addresses.
>
> I thought this could be done by specifying the regexp for the range of IP
> addresses in the hints and users file using the =~ operator e.g.:
v3 doesn't support regular expressions in the "users" file.
> My understanding is what I've done would work fine for freeradius 2.x.
> However, for freeradius 3.0 I need to create a group and define my list of
> NAS IPs under the group which I can then use as a match criteria in the
> hints and users file.
Or, you can use "unlang", and do a network mask check, or a regular expression check in "unlang".
> Does this make any sense at all? Is this the way I need to implement what
> I'd like to achieve?
That should work.
Alan DeKok.
More information about the Freeradius-Users
mailing list