Re: dynamic IP address through Cisco AP
Jan Satko [EMAIL PROTECTED] wrote: I have configured freeradius (with realm and IP pool) with PEAP support on mysql backend. NAS is Cisco 1100 and client is CB21AG (Cisco) pcmcia adapter. Authorization and authentification works ok. But my problem is that my winXP didn't recieved IP address from the pool. But Freeradius send it ! Wireless authentication CANNOT assign IP addresses. You have to use RADIUS to authenticte the wireless user, and DHCP to assign the user an IP address. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
RE: dynamic IP address through Cisco AP
You're trying to use a PPP mechanism over an ethernet media. Wireless clients use DHCP for the acquisition of IP addresses (and other parameters), not Framed-IP-Address. Remove the IP-pool info from your RADIUS server (unless you're also using dialup NASes) and put it onto a server running DHCP and all should be well :) Understood. But I want some logs of: which user get which IP address in which time. Will be this information in radius acct_log ? -- Bc. Jan 'EIS' Satko Slovak University of Agriculture network system managerTr. A. Hlinku 2 Tel: +421 37 7412 616 949 76 Nitra Slovakia - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
RE: dynamic IP address through Cisco AP
You're trying to use a PPP mechanism over an ethernet media. Wireless clients use DHCP for the acquisition of IP addresses (and other parameters), not Framed-IP-Address. Remove the IP-pool info from your RADIUS server (unless you're also using dialup NASes) and put it onto a server running DHCP and all should be well :) Understood. But I want some logs of: which user get which IP address in which time. Will be this information in radius acct_log ? Hmm, that information isn't included in the accounting data because the RADIUS server doesn't know it nor does the AP. You might try correlating the information in Calling-Station-Id (i.e. the host's MAC address), which *is* recorded in the accounting data, with dhcp logs. /var/db/dhcpd.leases matches a lease start time to a MAC and an IP address. However, once the lease expires, that information might be overwritten. Regards, Guy This e-mail is private and may be confidential and is for the intended recipient only. If misdirected, please notify us by telephone and confirm that it has been deleted from your system and any copies destroyed. If you are not the intended recipient you are strictly prohibited from using, printing, copying, distributing or disseminating this e-mail or any information contained in it. We use reasonable endeavours to virus scan all e-mails leaving the Company but no warranty is given that this e-mail and any attachments are virus free. You should undertake your own virus checking. The right to monitor e-mail communications through our network is reserved by us. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: dynamic IP address through Cisco AP
Wireless authentication CANNOT assign IP addresses. You have to use RADIUS to authenticte the wireless user, and DHCP to assign the user an IP address. So if I understand: - user wireless user authentification and client IP address are two independent problems. - RADIUS logs contain MAC address and DHCP logs contain pair of MAC address and IP address. Thanks a lot. -- Bc. Jan 'EIS' Satko Slovak University of Agriculture network system managerTr. A. Hlinku 2 Tel: +421 37 7412 616 949 76 Nitra Slovakia - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html