Bind radius client requests to a database
Alan DeKok
aland at deployingradius.com
Fri Sep 22 17:30:03 CEST 2017
On Sep 22, 2017, at 11:10 AM, Ti Ti <tt91em at gmail.com> wrote:
> My purpose is to obtain this result:
> A NAS, so the radius client, make an auth or acct request to the
> freeradius server; this server has to discriminate the requests using the
> nassecret
That's not how RADIUS works. You can't accept packets from random IPs, and "check the secret".
The secret isn't in the packet.
> and them forward to the right sql database. Each sql database has
> its own radcheck, radactt etc.
What you want to do is impossible.
Each client should instead set up a TLS connection to the server. That way they can be authenticated via certificates.
Alan DeKok.
More information about the Freeradius-Users
mailing list