22 Sep
2017
22 Sep
'17
11:30 a.m.
On Sep 22, 2017, at 11:10 AM, Ti Ti <tt91em@gmail.com> wrote:
My purpose is to obtain this result: A NAS, so the radius client, make an auth or acct request to the freeradius server; this server has to discriminate the requests using the nassecret
That's not how RADIUS works. You can't accept packets from random IPs, and "check the secret". The secret isn't in the packet.
and them forward to the right sql database. Each sql database has its own radcheck, radactt etc.
What you want to do is impossible. Each client should instead set up a TLS connection to the server. That way they can be authenticated via certificates. Alan DeKok.