Denis Iskandarov wrote:
man you kidding me ?
Your original message was unclear, vague, and confusing.
i know that it's not dhcp request. It is DHCP server + Radius binding
scheme. DHCP server getting request from client and asks RADIUS if this
client allowed to obtain IP address. DHCP
Thank you very much!
I'll post my result negative/positive and share my experience.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hello!
I'm trying to setup network with DHCP Snooping Option 82 functionality
+ Freeradius auth for DHCP requests.
DHCP server which receives DHCP packets from cisco switch dhcp relay
is Mikrotik RouterBoard.
freeradius2-2.1.7-7.el5. Also updated dictionary from new 2.1.10 package
Option 82 works
Denis Iskandarov wrote:
Hello!
I'm trying to setup network with DHCP Snooping Option 82 functionality
+ Freeradius auth for DHCP requests.
DHCP server which receives DHCP packets from cisco switch dhcp relay
is Mikrotik RouterBoard.
freeradius2-2.1.7-7.el5. Also updated dictionary from new
So as i understood one of the problems is that Freeradius can't find
username which is in mac-address format.
Beside users file i've added same user to sql base, UI with
daloRADIUS. radius can't find this username there as well.
P.S.: sql+ daloradius are working fine for eap user/pass
Also I did this check from daloradius:
Executed:
echo User-Name='00:0C:42:40:40:38',User-Password= | radclient -c '1'
-n '3' -r '3' -t '3' -x '127.0.0.1:1812' 'auth' 'testing123' 21
Results:
Sending Access-Request of id 3 to 127.0.0.1 port 1812
User-Name = 00:0C:42:40:40:38
rad_recv:
Ok.
DHCP server asking radius what to do with dhcp-request. radius gives
accept if username -mac-address is in it's database, plus adding
framed-ip-address and some other atributes to reply.
as i understood from debug, freeradius can't find username (which is
mac address, and sent in User-Name
Denis Iskandarov wrote:
DHCP server asking radius what to do with dhcp-request. radius gives
accept if username -mac-address is in it's database, plus adding
framed-ip-address and some other atributes to reply.
Except that a User-Name is never in a DHCP request.
as i understood from debug,
8 matches
Mail list logo