You would want to look into PPPoE (Point-to-Point Over Ethernet). Have a Unix box with pam auth users via Radius, and run PPPoE for each Port.
Or put each port into a VLAN and then use that turn on or off that vlan as nessary. then each user has a "Virtual LAN" connection so that not everyone in the building sees that traffic. And If you want a little more protection, use ciscos ISL VLANs, not 802.1q. All though, 802.1q is avaible in most of the free unixes... (FreeBSD is know for sure.) Or, you could look at something like this... http://www.nomadix.com/ This has auth and all that good stuff, and works with a radius server, out of the box. Just depends how much money you want to sink into it. On Tue, Nov 27, 2001 at 11:40:52AM -0400, Matt Ashfield had written: > Hey All, > > I'm a total newbie to radius, and I apologize ahead of time. I've read the > FAQ, but things are kinda flying high over my head after a few of the > questions. I'm thinking it's the right tool for what I want to do, but wanna > know if it's in the realm of possibility before jumping in full-footed.. > > I have an Internet connection. I have say 10 drops in my building that I > want users to be able to come in, plug into, authenticate and have access to > the Internet. I suppose I'd give them a certain IP address if they > authenticated correctly, and a non-routable one if they did it incorrectly. > But what prevents them from changing tha IP address? Is that on the Radius > Client (ie, the router)? > > Any info you can provide is greatly appreciated. > > Cheers > > Matt > [EMAIL PROTECTED] > > > > - > List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
