ippools; wasRE: Framed-IP-Address override NAS pool?
tnt at kalik.net
tnt at kalik.net
Thu Jan 8 00:26:54 CET 2009
> ippool users_pool {
> range-start = 172.16.1.2
> range-stop = 172.16.30.253
> netmask = 255.255.255.0
> cache-size = 251
> session-db = ${db_dir}/db.ippool
> ip-index = ${db_dir}/db.ipindex
> override = yes
> }
>
> ippool admin_pool {
> range-start = 172.16.30.2
> range-stop = 172.16.30.253
> netmask = 255.255.255.0
> cache-size = 251
> session-db = ${db_dir}/db.ippool
> ip-index = ${db_dir}/db.ipindex
> override = yes
> }
>
Change override to no. You don't want the pool to override static IP
addresses.
>The above seems to be clear from the example...but the example for the
>raddb/users file is incomplete...here is what I tried:
>
>testuser Service-Type == Framed-User
> Group == users, Pool-Name :="users_pool",
> Framed-Protocol == PPP,
> Framed-IP-Address = 172.16.1.2,
> Framed-IP-Netmask = 255.255.255.0,
> Framed-Compression = Van-Jacobson-TCP-IP
>
Group and Pool-Name should be on the first line. There should be
attribute Service-Type = Framed-User in the reply as well.
>I'm a little unlcear about the "Group" attribute above, and whether it
>pertains to unix groups at all, which I haven't done anything to yet. In
>any case, any pointers on how to make different users use different IP
>pools would be greatly appreciated.
>
Yes, Group is the attribute for unix groups.
Tip: use netmask 255.255.255.255 for point to point connections. They
don't need network, gateway or broadcast addresses.
Ivan Kalik
Kalik Informatika ISP
More information about the Freeradius-Users
mailing list