Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    RADIUS Authentication with VLans on same inteface

    Scheduled Pinned Locked Moved Wireless
    2 Posts 2 Posters 1.1k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • C Offline
      cmain38
      last edited by

      Hey All,

      Hope this is the right section as it appears to possibly be an issue with the AP or some setting i'm not trying.. So I have two interfaces, LAN/WAN, with 3 VLans setup on the LAN Interface. The LAN Interface (192.168.0.55) is connected to a netgear prosafe gs116ev2 (192.168.0.56) with VLans 20 (WiFi, 192.168.20.56), 30, and 40 configured. I installed the FreeRADIUS package on PFSense and wanted to try using RADIUS authentication for WiFi. I configured the interfaces on FreeRadius to be * on port 1812. When i configure the WiFi AP to be on the same subnet or VLan as the LAN interface, i am able to authenticate to the radius server. When I configure the WiFi AP with it's LAN IP as 192.168.20.56, and the NAS/Client as 192.168.20.56, I am unable to authenticate, and it generates no logs. I have setup port mirroring on both the trunk/tagged and the untagged port that the AP is plugged into, and I am not seeing any RADIUS traffic in Wireshark when the AP is on the 20 VLan, but I do obviously see the traffic when it is not on the 20 VLan.

      Thoughts?

      Thanks!

      Chris

      1 Reply Last reply Reply Quote 0
      • jahonixJ Offline
        jahonix
        last edited by

        You're feeding pfSense a trunk with all VLANs tagged or is that switch in L3 mode and does routing?

        1 Reply Last reply Reply Quote 0
        • First post
          Last post
        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.