RE: AP1230 + VLAN assignment
it's preferable to use the integer values instead of ASCII strings. So for the switching VLAN, I create a local VLAN on Cisco Aironet with a speficied SSID. The user configuration questions this SSID and according to the user, this one is switched in the VLAN defines in configuration file. If I'm not enough clear does not hesitate to say it ;) Regards, Lionel. Hello Lionel, thanks a lot for your help. To be honest, I didn't really understood your second mail at first sight but the first one was clear enough to help me a lot ! You were right, it works with the integer value. However, it's quite strange because in both cases (integer value or ASCII strings in the user file), the debug shows me that freeradius sends the same elements (ASCII strings) to the AP : Tunnel-Type:0 = VLAN Tunnel-Medium-Type:0 = IEEE-802 Tunnel-Private-Group-Id:0 = 10 To be sure,I tried again with the ASCII value in the user file and it worked. I think I was confused because after authentication, Windows says you're connected to VLAN30 (which was the SSID I entered in the windows properties) but when I check on the AP (association) I'm in the VLAN10, the one Freeradius sends back to the AP. To resume, I think it works both with the integer or the ASCII value. Thank you and Alan for answering me. Jean-Marie - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: AP1230 + VLAN assignment
Jean-Marie GUILLEMOT [EMAIL PROTECTED] wrote: I'm trying to assign wireless users connecting to Cisco Aironet 1230 to VLAN thanks to Freeradius. I'm not sure that's possible. See the Cisco AP documentation for a list of what attributes it can understand in an Access-Accept. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
RE: AP1230 + VLAN assignment
Hi, It's possible to switch VLAN when the user connecting to Cisco Aironet. For 802.1x with VLAN switching, three radius attribute-value pairs are defined. In the user file for example: xxx User-Password == xxx Tunnel-Type:1 = 13, Tunnel-Medium-Type:1 = 6, Tunnel-Private-Group-ID:1 = 17 So the integer values 13 and 6 are representing VLAN and 802 ASCII strings respectively. The value 17 is the VLAN id to be used Regards, Lionel. Lionel Gavage Network Engineer (SeGI/ULg) Bat. B26 SeGI -Message d'origine- De : [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] la part de Alan DeKok Envoyé : mercredi 29 septembre 2004 20:21 À : [EMAIL PROTECTED] Objet : Re: AP1230 + VLAN assignment Jean-Marie GUILLEMOT [EMAIL PROTECTED] wrote: I'm trying to assign wireless users connecting to Cisco Aironet 1230 to VLAN thanks to Freeradius. I'm not sure that's possible. See the Cisco AP documentation for a list of what attributes it can understand in an Access-Accept. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
RE: AP1230 + VLAN assignment
Hi Jean-Marie, it's preferable to use the integer values instead of ASCII strings. So for the switching VLAN, I create a local VLAN on Cisco Aironet with a speficied SSID. The user configuration questions this SSID and according to the user, this one is switched in the VLAN defines in configuration file. If I'm not enough clear does not hesitate to say it ;) Regards, Lionel. Lionel Gavage Network Engineer (SeGI/ULg) Email: [EMAIL PROTECTED]Tél: +32-4-3664845 Fax: +32-4-3662920 Bat. B26 SeGI -Message d'origine- De : [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] la part de Lionel Gavage Envoyé : jeudi 30 septembre 2004 7:47 À : [EMAIL PROTECTED] Objet : RE: AP1230 + VLAN assignment Hi, It's possible to switch VLAN when the user connecting to Cisco Aironet. For 802.1x with VLAN switching, three radius attribute-value pairs are defined. In the user file for example: xxx User-Password == xxx Tunnel-Type:1 = 13, Tunnel-Medium-Type:1 = 6, Tunnel-Private-Group-ID:1 = 17 So the integer values 13 and 6 are representing VLAN and 802 ASCII strings respectively. The value 17 is the VLAN id to be used Regards, Lionel. Lionel Gavage Network Engineer (SeGI/ULg) Bat. B26 SeGI -Message d'origine- De : [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] la part de Alan DeKok Envoyé : mercredi 29 septembre 2004 20:21 À : [EMAIL PROTECTED] Objet : Re: AP1230 + VLAN assignment Jean-Marie GUILLEMOT [EMAIL PROTECTED] wrote: I'm trying to assign wireless users connecting to Cisco Aironet 1230 to VLAN thanks to Freeradius. I'm not sure that's possible. See the Cisco AP documentation for a list of what attributes it can understand in an Access-Accept. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
