Auth All but only for those in my clients.conf

Dusty Doris freeradius at mail.doris.cc
Mon Dec 19 05:51:20 CET 2005


You want to allow any client that matches what is in the clients.conf file 
in, correct?

The secret in your clients.conf file is used to encrypt and sign packets 
between the clients and the server.  It is not used for authentication.

Have you tried adding the IPs to some type of backend?

For example, if you used the users file and huntgroups file.

In huntgroups.

allow	Client-IP-Address == 1.1.1.1
allow	Client-IP-Address == 1.1.1.2
allow	Client-IP-Address == 1.1.1.3

Then in users file

DEFAULT	Huntgroup-Name == allow, Auth-Type := Accept

DEFAULT Auth-Type := Reject





More information about the Freeradius-Users mailing list