Re: Option 82 DHCP Snooping + Freeradius auth of DHCP requests

Denis Iskandarov wrote: man you kidding me ? Your original message was unclear, vague, and confusing. i know that it's not dhcp request. It is DHCP server + Radius binding scheme. DHCP server getting request from client and asks RADIUS if this client allowed to obtain IP address. DHCP

Re: Option 82 DHCP Snooping + Freeradius auth of DHCP requests

Thank you very much! I'll post my result negative/positive and share my experience. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Option 82 DHCP Snooping + Freeradius auth of DHCP requests

Hello! I'm trying to setup network with DHCP Snooping Option 82 functionality + Freeradius auth for DHCP requests. DHCP server which receives DHCP packets from cisco switch dhcp relay is Mikrotik RouterBoard. freeradius2-2.1.7-7.el5. Also updated dictionary from new 2.1.10 package Option 82 works

Re: Option 82 DHCP Snooping + Freeradius auth of DHCP requests

Denis Iskandarov wrote: Hello! I'm trying to setup network with DHCP Snooping Option 82 functionality + Freeradius auth for DHCP requests. DHCP server which receives DHCP packets from cisco switch dhcp relay is Mikrotik RouterBoard. freeradius2-2.1.7-7.el5. Also updated dictionary from new

Re: Option 82 DHCP Snooping + Freeradius auth of DHCP requests

So as i understood one of the problems is that Freeradius can't find username which is in mac-address format. Beside users file i've added same user to sql base, UI with daloRADIUS. radius can't find this username there as well. P.S.: sql+ daloradius are working fine for eap user/pass

Re: Option 82 DHCP Snooping + Freeradius auth of DHCP requests

Also I did this check from daloradius: Executed: echo User-Name='00:0C:42:40:40:38',User-Password= | radclient -c '1' -n '3' -r '3' -t '3' -x '127.0.0.1:1812' 'auth' 'testing123' 21 Results: Sending Access-Request of id 3 to 127.0.0.1 port 1812 User-Name = 00:0C:42:40:40:38 rad_recv:

Re: Option 82 DHCP Snooping + Freeradius auth of DHCP requests

Ok. DHCP server asking radius what to do with dhcp-request. radius gives accept if username -mac-address is in it's database, plus adding framed-ip-address and some other atributes to reply. as i understood from debug, freeradius can't find username (which is mac address, and sent in User-Name

Re: Option 82 DHCP Snooping + Freeradius auth of DHCP requests

Denis Iskandarov wrote: DHCP server asking radius what to do with dhcp-request. radius gives accept if username -mac-address is in it's database, plus adding framed-ip-address and some other atributes to reply. Except that a User-Name is never in a DHCP request. as i understood from debug,