Hello, I have a server with mutliple ethernets working on. I need to run an authentication server(called chilli or coova) on 2 different ethernets which needed to authenticate with different radius servers. I am currently running my radius with virtual servers. The problem is, I created virtual servers according to client ip's as client 192.168.0.15 { shortname = client-a secret = xxxxxxx virtual_server = radius-a } And now when i try to run second different client software on same server, because the client ip still 192.168.0.15 it uses same virtual server on radius. Is there any other way to use different virtual server according to nasip for example??? or any other way that i can seperate clients except the ip addresses??? Im using radius 2.0.5 Thank you.
And now when i try to run second different client software on same server, because the client ip still 192.168.0.15 it uses same virtual server on radius. Is there any other way to use different virtual server according to nasip for example???
You mean NAS-Identifier? Yes. Create two virtual home servers (lets say NAS1 and NAS2, see proxy.conf). Then use unlang or users file to separate requests: if (NAS-IP-Address == "192.168.0.15) { if (NAS-Identifier == "NAS1") { update control { Proxy-To-Realm := "NAS1" } elsif (NAS-Identifier == "NAS2" { ... Ivan Kalik Kalik Informatika ISP
And now when i try to run second different client software on same server, because the client ip still 192.168.0.15 it uses same virtual server on radius. Is there any other way to use different virtual server according to nasip for example???
You mean NAS-Identifier? Yes. Create two virtual home servers (lets say NAS1 and NAS2, see proxy.conf). Then use unlang or users file to separate requests:
if (NAS-IP-Address == "192.168.0.15) { if (NAS-Identifier == "NAS1") { update control { Proxy-To-Realm := "NAS1" } elsif (NAS-Identifier == "NAS2" { ...
Ivan Kalik Kalik Informatika ISP
Hello, I tried the following configuration on sites-enabled listen { ipaddr = 192.168.10.91 port = 1815 type = auth virtual_server = dormnet } listen { ipaddr = 192.168.10.95 port = 1814 type = auth virtual_server = wireless } server wireless { authorize {............. } server dormnet { authorize { ............. } client 192.168.16.145 { shortname = test-client secret = xxxxxx } ----------------------------------------------------------- I got the output as follows when i run freeradius as debug mode. ... .... ..... Listening on authentication address * port 1812 Listening on accounting address * port 1813 Listening on authentication address * port 1821 Listening on authentication address 139.179.10.91 port 1815 as server wireless Listening on authentication address 139.179.10.95 port 1814 as server dormnet Listening on proxy address * port 1816 Ready to process requests. --------------------------------------------------- First of all before explaining my problem i think it is about the default freeradius listening on * port 1812.. How will i disable that?? And my problem. I set my clients radius settings as 192.168.10.95 1814 and 192.168.10.91 1815 but both authenticated for the settings of wireless virtualserver. What can be the problem???
- List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Ignore previous msg..Problem solved.my mistake.. :)) I just forgot the config.bck file on sites-enabled directory..so even i reconfigure the file it was still reading from the old one...
And now when i try to run second different client software on same server, because the client ip still 192.168.0.15 it uses same virtual server on radius. Is there any other way to use different virtual server according to nasip for example???
You mean NAS-Identifier? Yes. Create two virtual home servers (lets say NAS1 and NAS2, see proxy.conf). Then use unlang or users file to separate requests:
if (NAS-IP-Address == "192.168.0.15) { if (NAS-Identifier == "NAS1") { update control { Proxy-To-Realm := "NAS1" } elsif (NAS-Identifier == "NAS2" { ...
Ivan Kalik Kalik Informatika ISP
Hello, I tried the following configuration on sites-enabled
listen { ipaddr = 192.168.10.91 port = 1815 type = auth virtual_server = dormnet }
listen { ipaddr = 192.168.10.95 port = 1814 type = auth virtual_server = wireless }
server wireless { authorize {.............
}
server dormnet { authorize { ............. }
client 192.168.16.145 { shortname = test-client secret = xxxxxx } -----------------------------------------------------------
I got the output as follows when i run freeradius as debug mode.
... .... ..... Listening on authentication address * port 1812 Listening on accounting address * port 1813 Listening on authentication address * port 1821 Listening on authentication address 139.179.10.91 port 1815 as server wireless Listening on authentication address 139.179.10.95 port 1814 as server dormnet Listening on proxy address * port 1816 Ready to process requests. --------------------------------------------------- First of all before explaining my problem i think it is about the default freeradius listening on * port 1812.. How will i disable that??
And my problem. I set my clients radius settings as 192.168.10.95 1814 and 192.168.10.91 1815 but both authenticated for the settings of wireless virtualserver.
What can be the problem???
- List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
- List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
participants (2)
-
Ivan Kalik -
Oguzhan Kayhan