|
| From: | Tobias Hachmer |
| Subject: | Re: [Radiusplugin-users] push "route x.x.x.x 255.255.255.0" with radiusplugin |
| Date: | Tue, 08 May 2012 14:03:09 +0200 |
| User-agent: | Roundcube Webmail/0.8-beta |
On 08.05.2012 07:07, Ralf Lübben wrote:
yes this is possible.
Use the FramedRoute-Attribute at the Radius server, e.g.
user1 Cleartext-Password := "testing"
Service-Type = Framed-User,
Framed-IP-Netmask = 255.255.255.0,
Framed-IP-Address = 10.8.0.33,
Framed-Routing = Broadcast-Listen,
Framed-Compression = Van-Jacobsen-TCP-IP,
Framed-Route += "192.168.101.0/26 10.8.0.1/32 1",
Framed-Route += "192.168.111.0/24 10.8.0.1/32 1",
Framed-Route += "192.168.112.0/24 10.8.0.1/32 1",
Acct-Interim-Interval=5,
Ascend-Data-Rate=100,
Ascend-Xmit-Rate=200,
Framed-Protocol = PPP
Oh, that's not what I want. I have this with Framed-Route currently configured. But that are the networks residing on client side. I want to push individual routes to the client which the client has to put into it's local routing table to route these networks through the vpn.
On openvpn server I have in server config the following configured: push "route 192.168.99.0 255.255.255.0" push "route 192.168.100.0 255.255.255.0" push "route 192.168.101.0 255.255.255.0" push "route 192.168.200.0 255.255.255.0" push "route 192.168.254.252 255.255.255.252"But these routes will be apllied for all clients. What I want is to push to clienta only a set of this routes and to clientb a different subset. For my understanding this is predestined to do this via radius for central management.
Is there anywhere a list of all radius attributes openvpn will process/ understand?
If this isn't supported OOTB is this possible with vsa script? How works this, where can I tell openvpn to interpret a vsa the way I want to?
Regards, Tobias Hachmer
| [Prev in Thread] | Current Thread | [Next in Thread] |