Thor Spruyt wrote:
The second entry should be :I believe that /0 mask is not allowed in FR currently. Do you really have not smaller block/mask that your clients will fit into other than *allow anything to talk to my radius server*.
-Chris
Chris, split it up in two subnets:
client 0.0.0.0/1 { secret=... shortname=... } client 127.0.0.0/1 { secret=... shortname=... }
With pleasure :)
Thor.
client 128.0.0.0/1 {
secret=...
shortname=...
}remember that /1 is netmask 128.0.0.0 =
10000000-00000000-00000000-00000000
and 0.0.0.0 =
00000000-00000000-00000000-00000000
and 128.0.0.0 =
10000000-00000000-00000000-00000000
Since 127.0.0.0 =
01111111-00000000-00000000-00000000
It is contained in the subset of 0.0.0.0/1 {using 'ones' notation.}
All that crazy binary math can certainly be confusing, but remenber that the bits from the IP must match the 'ones' in the mask. /1 is the first 1 of 32 bits set, in 'ones' notation.
-- Guy Fraser Network Administrator The Internet Centre 780-450-6787 , 1-888-450-6787
There is a fine line between genius and lunacy, fear not, walk the line with pride. Not all things will end up as you wanted, but you will certainly discover things the meek and timid will miss out on.
- List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
