> -----Ursprüngliche Nachricht-----
> Von: [email protected] [mailto:list-
> [email protected]] Im Auftrag von Jeff B
> Gesendet: Dienstag, 19. Februar 2013 20:18
> An: [email protected]
> Betreff: [pfSense] Changing radius vendor without enabling captive
> portal?
>
> I'm using radius for openvpn auth. And I was looking into why it
> wasn't sending the Radius server the Calling-Station-Id. In looking
> at code I see that there is an option in Captive Portal
> $config['captiveportal']['radiusvendor'] that when set to 'cisco'
> sends the $clientip instead of the client's mac address. And this
> function appears is called for all radius auth even when not using
> captive portal.
>
> In order to appease the UI input validation I have to set up a captive
> portal on a real interface and configure it for radius auth. I don't
> want to do this.
>
> Can I inject just the $config['captiveportal']['radiusvendor'] into the
> config.xml and will it be stable as long as I don't touch the captive
> portal settings?
>
> Also can I request a change that the radius vendor be configured on the
> radius server ui and not the captive portal ui?
>
> Thanks
> _______________________________________________
> List mailing list
> [email protected]
> http://lists.pfsense.org/mailman/listinfo/list
Calling-Station-ID and Called-Station-ID is something the NAS must send. It
is nothing RADIUS can do.
What you can do to change this ist o modify this file:
radius_authentication.inc
There you will find this part:
############################################
switch($radiusvendor) {
case 'cisco':
$calledstationid = $clientmac;
$callingstationid = $clientip;
break;
default:
$calledstationid = getNasIP();
$callingstationid = $clientmac;
break;
}
#############################################
Probably you just need to modify the "default" part to make it work like you
want.
_______________________________________________
List mailing list
[email protected]
http://lists.pfsense.org/mailman/listinfo/list
