Framed-IP-Address override NAS pool?
up at 3.am
up at 3.am
Wed Jan 7 02:55:16 CET 2009
Hi:
In my years running a dialup ISP, I used Cistron Radius and Cisco and
Lucent NAS's. I am no using FreeRadius and a Cisco router to authenticate
pptp VPN users. The default IP address pool is defined in the Cisco like
this (parsed):
interface Virtual-Template1
peer default ip address pool vpnpool
no keepalive
ppp encrypt mppe auto
!
ip local pool vpnpool 192.168.0.1 192.168.0.254
That works fine authenticating unix system users using this raddb/users
config (one of the supplied samples):
DEFAULT Framed-Protocol == PPP
Framed-Protocol = PPP,
Framed-Compression = Van-Jacobson-TCP-IP
I now want to assign a few users different, static IPs using this:
testuser Service-Type == Framed-User
Framed-Protocol == PPP,
Framed-IP-Address = 192.168.1.2,
Framed-IP-Netmask = 255.255.255.0,
Framed-Compression = Van-Jacobson-TCP-IP
This sort of thing used to work fine with Cisco dialup NAS's and Cistron,
even though the NAS had no pool using that IP range in its config...radius
just forced it to override the default pool, but in this case, it just
keeps assigning an IP from the NAS pool (and yes, I have the above
statement ABOVE the DEFAULT statement).
Is there something else that needs to be done to allow this?
Thanks in advance!
James Smallacombe PlantageNet, Inc. CEO and Janitor
up at 3.am http://3.am
=========================================================================
More information about the Freeradius-Users
mailing list