Captive Portal with external RADIUS authentications… help?
-
There you go, here are your access requests.
16:25:26.446909 IP 192.168.5.1.26905 > 192.168.5.11.1812: UDP, length 128
16:25:29.449781 IP 192.168.5.1.26905 > 192.168.5.11.1812: UDP, length 128Note there is nothing in response, so check your RADIUS server's logs.
-
Thanks for that, ill have to try and work out how to find this in the radius server logs and report back. When i am on the radius server i can authenticate so i know its working.. The radius server has no firewall installed so i have to assume there is something wrong with pfSense with this..
-
The radius server has no firewall installed so i have to assume there is something wrong with pfSense with this..
I don't know specifics of your radius server, but some servers have configuration files that can specify access restrictions (e.g. "only talk with clients from these IP addresses").
-
I don't know specifics of your radius server, but some servers have configuration files that can specify access restrictions (e.g. "only talk with clients from these IP addresses").
This. The problem is without question on the RADIUS server, and this is the most likely cause, most all won't answer requests over the network without properly defining the host and its secret.
-
Interesting.. i will have to take a look at this.. I am though defining the host, port and secret in the settings for the RADIUS server uthentication on the captive portal.
SO it possibly has a setting in the RADIUS conf that will not allow authentication from another machine?
-
Every RADIUS server has to have its clients defined in its config.
-
Ok, so by client you are not talking about users right? you mean as in the ip address of the pfsense box has to be defined in the radiusd.conf?
-
Yes, the firewall is the RADIUS client.
-
Can someone tell me how to add the client to radius conf?
Not sure how this is done and i dont want to break something..
-
Depends on what RADIUS server you're using. Generally a better question for the RADIUS server's forum or list, though some here may know the particular server you're using.
-
No worries, i worked it out.. Authentication is now working to my FreeRADIUS server through captive portal.
On a side note, does anyone know of any good software that i can use for billing?