<html><head></head><body style="word-wrap: break-word; -webkit-nbsp-mode: space; -webkit-line-break: after-white-space; "><br><div><div>On Aug 31, 2010, at 8:48 AM, Marten Pape wrote:</div><br class="Apple-interchange-newline"><blockquote type="cite"><div>Alan DeKok schrieb:<br><blockquote type="cite">Marten Pape wrote:<br></blockquote><blockquote type="cite"><br></blockquote><blockquote type="cite"><blockquote type="cite">Now my goal is to tell the NAS to assign every wifi-packet to a certain<br></blockquote></blockquote><blockquote type="cite"><blockquote type="cite">VLAN. I don't need to have a dynamic assignment of VLAN based on<br></blockquote></blockquote><blockquote type="cite"><blockquote type="cite">usernames or something else. One VLAN would be sufficient.<br></blockquote></blockquote><blockquote type="cite"><blockquote type="cite"><br></blockquote></blockquote><blockquote type="cite"><br></blockquote><blockquote type="cite"> You can assign the vlan in the "post-auth" section.<br></blockquote><blockquote type="cite"><br></blockquote>Now, I added this answer to the sites-available/default -> post-auth<br>section:<br> update reply {<br> Tunnel-Type := 13<br> Tunnel-Medium-Type = 6<br> Tunnel-Private-Group-ID = 123<br> }<br><br>But the access point doesn't seem to tag this traffic with the vlan-ID<br>123. As far as I know, this access point is able to do that. Do you see<br>anything else going wrong? The debug log of a new connection try is<br>attached below.<br><font class="Apple-style-span" color="#000000"><font class="Apple-style-span" color="#144FAE"><br></font></font></div></blockquote><blockquote type="cite"><div>rlm_sql (sql): Released sql socket id: 4<br>++[sql] returns ok<br>++[exec] returns noop<br>Sending Access-Accept of id 11 to 172.20.160.171 port 1812<br> MS-MPPE-Recv-Key =<br>0x35b16df4a592e9da418da46ab5164210166ad66293fd8831c5dec7d2f7eb1a8d<br> MS-MPPE-Send-Key =<br>0x0709cee111f7985f495c7208fe4ceb3b57b1657f9fc10762578ba41ba9727b85<br> EAP-Message = 0x030a0004<br> Message-Authenticator = 0x00000000000000000000000000000000<br> User-Name = "marpap"<br> Tunnel-Type:0 = VLAN<br> Tunnel-Medium-Type:0 = IEEE-802<br> Tunnel-Private-Group-Id:0 = "123"</div></blockquote><br></div><div>Server is sending back the attributes. Check whether the VLAN must be pre-configured on the NAS in order to be assigned. Else check that the NAS supports dynamic assignment, or that it uses VSAs instead of the RFC attributes.</div><div><br></div><div>-Arran</div><br></body></html>