Will dialup NAS-IP-Address == 0.0.0.0 allow users which are members of the dialup group login from any NAS ?
On Thu, 12 May 2005 20:19:13 -0400 "Alan DeKok" <[EMAIL PROTECTED]> wrote: > [EMAIL PROTECTED] wrote: > > radiusd: FreeRADIUS Version 0.9.3, for host i686-pc-linux-gnu, built on > > Nov 9 2004 at 11:08:43 > > You should really upgrade to 1.0.2. > > > What I Need to Accomplish: > > a. Any given user may have access to any combination of dialin, wireless, > > dsl > > The server allows this by default, unless you edit the configuration > to disallow this. > > > b. Reject access to unknown users, > > The server does this by default. > > > virus_lockout, billing_lockout and email_only customers, regardless > > of the NAS they are using. > > How do you define those customers? > > > c. Accept a known user from a modem server only if the user is part of the > > dialin group. > > d. Accept a known user from a wireless access point only if the user is > > part of the wireless group. > > e. Accept a known user from DSL only if the user is part of the dsl group. > > See the FAQ, you can do group checking via Unix groups. See also > rlm_passwd in 1.0.2, for non-Unix group checks. > > > However, when I add to 'radgroupcheck': > > Wireless_default Huntgroup-Name := wireless > > That should be '==' > > > 3. 'radgroupcheck' & 'usergroup' provides the 'Group' attribute > > No. The Group attribute is for checking Unix groups, nothing else. > > ... > > Are these the ONLY entries that go into the "huntgroups" file? > > Yes. > > Alan DeKok. > > - > List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
