Is there a way to make the FreeRADIUS (or just generally package) information sync between two pfSense boxes?
I have 2 different customers that need radius-1 of them I can use CARP, but the other has 2 different sites. Scenario 1: Customer with 2 office buildings providing internet access to tenants. We currently have 2 pfSense boxes in place, 1 for NAT and FreeRADIUS (to mac authenticate tenants and auto-assign them to the appropriate VLANs), and 1 just as a filtering bridge between the "public" segment (where we assign people that need to have public static IP addresses) and the internet. I would like to set up a secondary pfSense NAT box, perhaps even in a CARP config, but I would very much like for the FreeRADIUS info to sync between them. Scenario 2: 2 real estate offices, VPN'd together. Each location has good wireless APs (proxim). We want to mac authenticate each of the agents laptops (so when they leave we can just deactivate their mac) against FreeRADIUS, and we would like to replicate the FreeRADIUS account information to the other office. Already have 2 pfsense boxes, but 1 is at 1 office and 1 is at the other. Is there currently a way to make either (or both) of the above scenarios work using pfSense? If not, if someone can give me a bump in the right direction, maybe I can add it to the FreeRADIUS package and send that change to coreteam also. Thanks, Dimitri Rodis Integrita Systems LLC
