[Chilli] NAS and NAT

David Bird david at coova.com
Mon Nov 26 17:39:33 UTC 2012


Hello,

RADIUS RFC 2865 states:

      A RADIUS server MUST use the source IP address of the RADIUS UDP
      packet to decide which shared secret to use, so that RADIUS
      requests can be proxied.

So, it is not uncommon for RADIUS servers to associate a "nas" (and
shared secret) to an IP address. Is this the issue you are having?
Specifics about the FR database tables you might refer to FR mailing
list. However, in the past I have used rlm_raw to give FR the ability to
select a shared secret based on attributes (even if in conflict to
RFC). 

David
 

On Mon, 2012-11-26 at 08:47 +0100, Lorenzo Milesi wrote:
> Hi.
> 
> I'm planning an upgrade from Chillispot+FreeRadius1 to Coova+FreeRadius2.
> I'm doing some testing and sadly found out FR2 doesn't allow having 2 NASes with the same IP address (nasname column in nas table).
> 
> Has anyone ran into the same issue? How did you solve?
> 
> Also, similar problem happens with dynamic IPs, when the `nas` table is read on FR startup only...
> 
> thanks




More information about the Chilli mailing list