[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Help-gnu-radius] Allow authentication from any IP ?
From: |
List User |
Subject: |
Re: [Help-gnu-radius] Allow authentication from any IP ? |
Date: |
Fri, 21 Nov 2003 11:47:07 -0800 |
According to Sergey's previous email, this feature is planned for the future
version of Radius. If you can't wait, you can change radius sourse and
rebuild radius youself (my solution, which works fine in production for me):
look for the change in the implementation of client_lookup_ip function (see
attached file).
Then change client file so, LAST entry looks like this:
255.255.255.255 MyVerySharedSecret
Note tha radius will still processs individuals secrets BEFORE the line
above.
Leon
----- Original Message -----
From: "Maurice Makaay" <address@hidden>
To: "Stéphane Huguet" <address@hidden>
Cc: <address@hidden>
Sent: Friday, November 21, 2003 2:09 AM
Subject: Re: [Help-gnu-radius] Allow authentication from any IP ?
> Hi,
>
> > Is there a way to allow any source IP to connect to the RADIUS server
with a
> > 'shared' radius key ?
> > Something like inserting at the end of the 'clients' file:
> > DEFAULT shared-radius-key
>
> I just looked into the source code and there is currently no such feature
> in the radius server. To make this file more compliant with some of the
> other configuration files, the DEFAULT client should be added as a new
> feature. Thus: at this moment you cannot use the construction as
> described above.
>
> Sergey: would it be a good idea to add DEFAULT logic to the handling of
the
> clients file? If this feature is added, I think the netmask patch I sent
in
> yesterday should be added as well to the clients code. It's mostly
> cut'n'paste to make this work.
>
> Regards,
>
> -- Maurice Makaay
>
>
>
> _______________________________________________
> Help-gnu-radius mailing list
> address@hidden
> http://mail.gnu.org/mailman/listinfo/help-gnu-radius
>