Hi, > /etc/raddb/eth2name (used in a "passwd" to map Vendor to VendorName): > > 00-0c-29:virtual-vmware > 00-16-3e:virtual-xen > > /etc/raddb/users: > > # don't send banned vlan to virtual machines > DEFAULT VendorName =~ "virtual.*", Zone == "banned", Auth-Type := Reject > > # real machines get a banned vlan as opposed to rejection > DEFAULT Zone == "banned" > Tunnel-Medium-Type = IEEE-802, > Tunnel-Type = VLAN, > Tunnel-Private-Group-Id = `%{sql:...}`
forgiveness for naivety, but if the virtual machine is not configured to use the ethernet in bridged mode (ie NAT mode) then you wont see it as a virtual machine(?) alan - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html