Sunday, May 17, 2009

Server connection between FreeRadius and NAS ISP

If we have a subscription with the VPN ISP(Virtual Private Network Internet Service Provider), and have our own FreeRadius server, we can perform integration with NAS ISP(Network Access Server ISP) . So mobile users can connect to our Local Area Network with VPN ISP.

So that integration between NAS ISP and freeradius server can run smoothly , we need to be setting in our freeradius server. Setting connection with NAS ISP is easy, edit file clients.conf in the directory /usr/local/etc/raddb, add the following lines:
client 192.168.1.2 (
secret = secret
shortname = NAS_ISP)
  • 192.168.1.2 =Ip Address NAS ISP
  • secret = password used by the NAS ISP as encryption and signature with our radius server
  • shortname = alias domain or IP Address NAS ISP

Next log recorded by radacct in /usr/local/var/log/radius/radacct:
Thu May 15 14:02:01 2008
NAS-Identifier = "Juniper IVE"
User-Name = "beni.santoso(Users)[Users]"
Acct-Multi-Session-Id = "beni.santoso(Users)"Thu May 15 14:00:23 2008""
Acct-Link-Count = 2
NAS-IP-Address = 192.168.1.2
NAS-Port = 1
Acct-Status-Type = Start
Framed-IP-Address = 125.161.61.139
Acct-Session-Id = "beni.santoso(Users)"Thu May 15 14:00:23 2008"NC"
Acct-Authentic = RADIUS
Client-IP-Address = 192.168.1.2
Acct-Unique-Session-Id = "53a366e82b8aa8c1"
Timestamp = 1210834921
That's it guys!!!

No comments:

Post a Comment