So your pupils use wireless cards to connect to the network? Can you give more details about the hardware and software?
Freeradius has IP pools, you can define a pool and make certain MAC addresses use the IPs from the pool. See Framed-IP-Address attribute(if I am not mistaken, it was something like that) But does your wireless ap/dhcp server etc. support this? that is the question...
Evren
Dan Hawker wrote:
Hi All,
My first post so please be gentle :)
We've been having a few problems with pupils joining our LAN using their own kit. Although we'd like to allow this at some stage (under our rules obviously) we'd like this to be done in a sensible, secure way.
Now I have set up a FreeRADIUS box on OS X, it has MySQL support and so far, so good it works fine. If I setup a wireless AP to use it, it works like a charm. Fine.
I'd like to now setup a scheme for the RADIUS box to match MAC Addresses to a range of IP addresses (particularly a scope our DHCP server will send out). I am therefore hoping any pupil laptop in the future will be allowed access as long as the MAC address is known and they are using a particular IP range.
Is this doable with FreeRADIUS??? I presently am using dialup_admin to admin the system and it has a IP Address field in the new user and new group setup. Can I add a range in the usual 192.168.1.0/24 notation to say the group and make all Pupil users a member of that group???
Would this work or am I completely barking up the wrong tree.
TIA
Dan
------
Dan Hawker Systems Admin Canford School --
[EMAIL PROTECTED]
- List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
- List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
