Bind radius client requests to a database

Alan DeKok aland at
Fri Sep 22 17:30:03 CEST 2017

On Sep 22, 2017, at 11:10 AM, Ti Ti <tt91em at> wrote:
> My purpose is to obtain this result:
> A NAS, so the radius client, make an auth or acct request to the
> freeradius server; this server has to discriminate the requests using the
> nassecret

  That's not how RADIUS works.  You can't accept packets from random IPs, and "check the secret".

  The secret isn't in the packet.

> and them forward to the right sql database. Each sql database has
> its own radcheck, radactt etc.

  What you want to do is impossible.

  Each client should instead set up a TLS connection to the server.  That way they can be authenticated via certificates.

  Alan DeKok.

More information about the Freeradius-Users mailing list