How to control a wpa_supplicant client request can only send to a hostapd NAS?
Ivan Kalik
tnt at kalik.net
Thu Jul 9 10:39:25 CEST 2009
> If the network only has the NAS1 device, the CLIENT1 can pass the
> authentication. When the network have two NAS device, which one is NAS1
> and the other is NAS2, the CLIENT1 request can send to NAS1 and NAS2,
> then NAS1 and NAS2 all send the request to radius. I don't know
> whether CLIENT1 under NAS1 or NAS2 in radius. How to control a
> wpa_supplicant client request can only send to a hostapd NAS?
> The CLIENT1 MAC: 00:0F:1E:34:28:B4
> The NAS1 MAC: 00:0F:1E:34:26:50
> The NAS2 MAC: 00:0f:1e:00:00:83
That's one way - NAS mac address will be in Called-Station-Id. Or use
NAS-IP-Address.
> The RADIUS log
> --------------------------
> rad_recv: Access-Request packet from host 192.168.1.45 port 1024, id=0,
> length=168
> User-Name = "00:0F:1E:34:28:B4"
> NAS-IP-Address = 192.168.1.45
> Called-Station-Id = "*---**00-0F-1E-34-26-50:**---*"
>
> rad_recv: Access-Request packet from host 192.168.1.44 port 1024, id=1,
> length=186
> User-Name = "00:0F:1E:34:28:B4"
> NAS-IP-Address = 192.168.1.44
> Called-Station-Id = "*---**00-0F-1E-00-00-83:**---*"
Ivan Kalik
Kalik Informatika ISP
More information about the Freeradius-Users
mailing list