<[EMAIL PROTECTED]> wrote: > Then I come up with the problem of sending the customer to the correct > subnet when they authenticate. After reading much Radius documentation and > numerous RFC documents, I have concluded that there must be some way for > Radius to do what I want. Specifically, there is a section in the FAQ for > freeRADIUS that talks about Framed-Filter-Id and ACLs with a CISCO router.
Why? Just return a Framed-IP_Address attribute to them. The address they request is just a request. The RADIUS server assigning an IP address is taken by the NAS to be definitive. > Is there some Radius-based way that this (or something like it) can be used > to tell a DHCP server (either under Linux or on the Imagestream router) what > subnet to put the user into? Why are you doing DHCP if the RADIUS server can assign an IP address? > And while I'm asking, does anyone know how to make sure that the user does > NOT get access via a different subnet? We are setting up nine 21-bit > networks. One for each level of service. We don't want them to have the > ability to manually specify an IP address, gateway, and subnet mask in a > different GoS subnet and have it actually work. Have the RADIUS server assign an address. This is what RADIUS does. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
