Hi, all
I have an AP which has ip address 10.1.2.5, and Freeradius get request
according log:
rad_recv: Access-Request packet from host 10.1.2.5:1024, id=171, length=95
User-Name = "Presario 2135AD"
NAS-IP-Address = 10.1.2.5
NAS-Identifier = "AWL500"
State = 0x520972a7955c03b6ae1090d3b8e32c36
EAP-Message = 0x022a00060d00
Message-Authenticator = 0x3e4904287b7a5dfdf7f71e5400bc5f46
My notebook has an entry in /etc/raddb/users file:
"Presario 2135AD" Auth-Type := EAP, NAS-IP-Address == 10.1.2.5
Session-Timeout = 300
Freeradius tell AP to accept conection.
Later I change profile to this:
"Presario 2135AD" Auth-Type := EAP, NAS-IP-Address == 10.1.2.6
Session-Timeout = 300
Freeradius tell AP to accept conection again.
If I really have 2 AP with IP address 10.1.2.5,10.1.2.6, How can I limit
"Presario 2135AD" only has access to 10.1.2.5? Is Freeradius suppose to check
NAS-IP-Address attribute in request and reject requests which do not match?
Thanks,
Vincent Chen
-----------------------------------------------------------------
Yahoo!奇摩造型精靈
最新的造型精靈簽名檔,讓信件獨具個人色彩!
http://tw.avatar.yahoo.com/
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
