very long regular expression...
James Wakefield
jamesw at deakin.edu.au
Wed Nov 22 14:04:33 CET 2006
Norbert Grochal wrote:
> I have FreeRADIUS Version 1.1.0
>
> I want to disallow login to access points for every hosts that are not
> in my network.
>
> So at the end of /usr/local/etc/raddb/users file I put regular
> expression that checks if Calling-Station-Id IS NOT in list of my hosts...
>
> DEFAULT Auth-Type := REJECT, Calling-Station-Id !~
> "008012323244|002938475473|<and many other macs...>"
Is there any reason you shouldn't have a separate stanza accepting each
valid MAC address, then implicitly reject all other MAC addresses?
--
James Wakefield,
Unix Administrator, Information Technology Services Division
Deakin University, Geelong, Victoria 3217 Australia.
Phone: 03 5227 8690 International: +61 3 5227 8690
Fax: 03 5227 8866 International: +61 3 5227 8866
E-mail: james.wakefield at deakin.edu.au
Website: http://www.deakin.edu.au
More information about the Freeradius-Users
mailing list