>
> Hi,
>
> I really don't know what i'm doing wrong. Probably I have misunderstood
> something. I'm using ttls/md5 authentication it's working fine and I get an
> ip address from a dhcp server.
>
> To get the ip address from an ippool I have made the following
> configurations:
>
> - user file:
> user_name User-Password == "****", Pool-Name := "my_pool"
> Service-Type = Framed-User,
> Framed-Protocol = PPP,
> Framed-MTU = 1500,
>
> - radiusd.conf file:
>
> ippool my_pool{
> range-start = 10.0.0.11
> range-stop = 10.0.0.30
> netmask = 255.0.0.0
> cache-size = 800
> session-db = ${raddbdir}/ip-pool.db
> ip-index = ${raddbdir}/ip-index.db
> override = no
> maximum-timeout = 0
> }
>
> And the Access accept message looks like this:
>
> ..
> rlm_ippool: Allocated ip 10.0.0.26 to client on nas 10.0.0.1,port 503
> ..
> Sending Access-Accept of id 62 to 10.0.0.1:21647
> Service-Type = Framed-User,
> Framed Protocol = PPP,
> Framed MTU = 1500,
> MS-MPPE-Recv-Key = 0x***********************
> MS-MPPE-Send-Key = 0x***********************
> EAP-Message = 0x*****************
> Message-Authenticator = 0x*****************
> User-Name = "user_name"
> Framed-IP-Address = 10.0.0.26
> Framed-IP-Netmask = 255.0.0.0
>
> The NAS still receives his IP address from the DHCP server and not from the
> radius server.
>
> Could you please tell me which rfc's to read
>
> Thanks for the reply
> Tom Fritz
>
Radius did its job and sent back the Framed-IP-Address and whatever reply
items you gave it. Its up to the NAS to use that radius reply value and
assign it to the user. You have to read the documentation on your NAS and
see what radius values it needs and how to enable it to use the radius
values instead of using dhcp.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
