deny access with huntgroups

Ivan Kalik tnt at kalik.net
Wed Aug 26 15:25:01 CEST 2009


> How can i deny access for all other users that don´t have a Huntgroup-Name
> defined and if NAS-IP-Address is not included or wrong in the request =
> deny?
>
> My current configuration accepts all authentications as long the password
> is
> correct.
>
> users:
> localuser Huntgroup-Name == "vpn", Cleartext-Password := "localuser"
>
> huntgroups:
> vpn     NAS-IP-Address == 164.9.158.65
>
> I am missing something. Please point me in the right direction.

Post the debug. Something else is letting user in. With these entries he
shouldn't be able to connect from a different NAS. You don't have an entry
without the hunthroup for this user?

Ivan Kalik
Kalik Informatika ISP




More information about the Freeradius-Users mailing list