I've been asked if the following is possible. We operate a pair of radius servers that proxy several realms to their respective home servers. We need to limit their users access based on Called-Station-ID. When the Auth request comes in from the NAS, I need to be able to consult a (possibly large) list of access numbers and determine if the user called an approved number, if so allow the request to proceed to the home server. If not, return an Access-Reject to the NAS. I've experimented with the DEFAULT entries in the users file, and looked at pre-proxy as well. So far I haven't come up with a good way to do this. If anyone is currently doing something like this could you let me know how you're doing it? Keep in mind the potential list of Called-Station-IDs is potentially very large, management of and updates to this list need to be straight forward. Any help will be most appreciated.
-- Mark Moody - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
