xDSL with dynamic addressing
tnt at kalik.net
tnt at kalik.net
Wed Oct 29 16:12:28 CET 2008
> I am using freeradius since four years and I used PPTP/L2TP tunnel for autenticating users against my RADIUS servers with one of my NAS has a dynamic IP (xDSL). However, I can not rely on these connections and the connectivity sometimes fall down and the tunnel, too.
>
> I have some reasons for not to use dyndns or this kind of services.
>
> I decided to autenticate my NAS using only the shared key:
>
>client 0.0.0.0/0 {
> secret = same_secret_for_eveyone
> shortname = my_network
>}
>
> I recognize a problem with DoS attack to my DB.
>
> I can not autenticate the client IP because I have xDSL with dynamic IP. Do you know some other solucion instead of autenticating the public IP in the authorize step?
>
Yes. Use 2.1.1. Have a look at raddb/sites-available/dynamic-clients.
Ivan Kalik
Kalik Informatika ISP
More information about the Freeradius-Users
mailing list