> How can i deny access for all other users that donĀ“t have a Huntgroup-Name > defined and if NAS-IP-Address is not included or wrong in the request = > deny? > > My current configuration accepts all authentications as long the password > is > correct. > > users: > localuser Huntgroup-Name == "vpn", Cleartext-Password := "localuser" > > huntgroups: > vpn NAS-IP-Address == 164.9.158.65 > > I am missing something. Please point me in the right direction.
Post the debug. Something else is letting user in. With these entries he shouldn't be able to connect from a different NAS. You don't have an entry without the hunthroup for this user? Ivan Kalik Kalik Informatika ISP - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html