Date: Tue, 31 Mar 1998 11:18:07 +0200 From: "IBS / Andre Oppermann" <andre@pipeline.ch> To: Andreas Klemm <aklemm@hightek.com> Cc: freebsd-isp@FreeBSD.ORG Subject: Re: radius, how to enable/diable logins on different type of NAS ? Message-ID: <3520B4CF.81B2DBD3@pipeline.ch> References: <19980331111110.62824@hightek.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Andreas Klemm wrote: > > Hi ! > > I'm using radius as authorization protocol for every kind of > NAS (network access router). I have two kinds of access servers: > USR for modem dialin and > Cisco router for router dialup > > Is there a way to define different kind of users within radius config > like: - "modem" > - "router" > and teach every network access server, that he should only accept > users of type modem or of type router ? What type of radiusd are you using (Merit, Livingston,...)? But I think that would not be easy with only one radius server. Try the following thing: create two radius config files, one with port numbers 1645 (auth) / 1646 (acct) for the normal USR and one with 1647 (auth) / 1648 (acct) for the cisco routers. Start two daemons with those ports and different user files and change the cisco radius ports to the ports above. -- Andre Oppermann CEO / Geschaeftsfuehrer Internet Business Solutions Ltd. (AG) Hardstrasse 235, 8005 Zurich, Switzerland Fon +41 1 277 75 75 / Fax +41 1 277 75 77 http://www.pipeline.ch ibs@pipeline.ch To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?3520B4CF.81B2DBD3>