After looking at the configuration, there was one line that seemed to stand out...
radius server attribute 4 192.168.1.5 Other Netgear documentation that I have found states the following in regards to the 'radius server attribute' command: radius server attribute Use this command to specify the RADIUS client to use the NAS-IPAddress attribute in the RADIUS requests. If the specific IP address is configured while enabling this attribute, the RADIUS client uses that IP address while sendingNAS-IP-Addressattribute in RADIUS communication. Format radius server attribute <4> [<ipaddr>] Mode Global Config Let me take that out and test again. >Hello Fabrice, > >Not that I am aware of, but then again, the Netgear switch is new to me. I am >more familiar with Cisco equipment. > >Here are the relevant commands on the Netgear switch; maybe the >NAS-IP-Address will be spotted with a second set of eyes. :-) (Passwords have >been edited) > >(M4300-52G-PoE+) #show run > >!Current Configuration: >! >!System Description "M4300-52G-PoE+ ProSAFE 48-port 1G PoE+ and 2-port >10GBASE-T and 2-port 10G SFP+, 12.0.2.15, 1.0.0.8" >!System Software Version "12.0.2.15" >!System Up Time "1 days 5 hrs 38 mins 42 secs" >!Additional Packages QOS,Multicast,IPv6,IPv6 Management,Stacking,Routing >!Current SNTP Synchronized Time: SNTP Last Attempt Status Is Not Successful ! >vlan database >vlan 20,30,100-101 >vlan name 20 "PF_Registration" >vlan name 30 "PF_Isolation" >vlan name 100 "PF_Production" >vlan routing 1 1 >vlan routing 101 2 >exit > >configure >stack >member 1 4 >exit >ip name server 192.168.1.1 >slot 1/0 4 >set slot power 1/0 >no set slot disable 1/0 >snmptrap "ngTrap" ipaddr 192.168.8.5 >aaa session-id unique >dot1x system-auth-control >dot1x system-auth-control monitor >aaa authentication dot1x default radius >authorization network radius >radius accounting mode >radius server host auth "192.168.1.5" name "Default-RADIUS-Server" >radius server key auth "192.168.1.5" encrypted ***** radius server primary >"192.168.1.5" >radius server attribute 4 192.168.1.5 >radius server host acct "192.168.1.5" name Default-RADIUS-Server radius server >key acct "192.168.1.5" encrypted ***** aaa server radius dynamic-author client >192.168.8.5 server-key "*****" >exit >line console >exit > >line telnet >exit > >line ssh >exit >! >snmp-server community "ngRead" >snmp-server community "ngWrite" >snmp-server community rw ngWrite > >interface 1/0/1 >dot1x port-control mac-based >dot1x mac-auth-bypass >exit > > > >interface 1/0/3 >dot1x mac-auth-bypass >exit > > > >interface 1/0/48 >dot1x port-control force-authorized >vlan pvid 101 >vlan participation include 20,30,101 >vlan tagging 1,20,30 >exit > > > >interface vlan 1 >routing >ip address dhcp >exit > > > >interface vlan 101 >routing >ip address 192.168.1.12 255.255.255.0 >exit > > >ip management vlan 101 192.168.1.12 255.255.255.0 ip management >source-interface vlan 101 router rip exit router ospf exit >ipv6 router ospf >exit >ip default-gateway 192.168.1.1 >exit > >>Hello James, >> >>little bit weird , the NAS-IP-Address is equal to 192.168.1.5 and >>should be equal to 192.168.1.12. >> >>Did you changed something the the Netgear config to set NAS IP Address >>with the wrong value ? >> >>Regards >> >>Fabrice > >James Garcellano James Garcellano ------------------------------------------------------------------------------ Check out the vibrant tech community on one of the world's most engaging tech sites, Slashdot.org! http://sdm.link/slashdot _______________________________________________ PacketFence-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/packetfence-users
