Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search

    RADIUS Authentication with VLans on same inteface

    Wireless
    2
    2
    920
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • C
      cmain38 last edited by

      Hey All,

      Hope this is the right section as it appears to possibly be an issue with the AP or some setting i'm not trying.. So I have two interfaces, LAN/WAN, with 3 VLans setup on the LAN Interface. The LAN Interface (192.168.0.55) is connected to a netgear prosafe gs116ev2 (192.168.0.56) with VLans 20 (WiFi, 192.168.20.56), 30, and 40 configured. I installed the FreeRADIUS package on PFSense and wanted to try using RADIUS authentication for WiFi. I configured the interfaces on FreeRadius to be * on port 1812. When i configure the WiFi AP to be on the same subnet or VLan as the LAN interface, i am able to authenticate to the radius server. When I configure the WiFi AP with it's LAN IP as 192.168.20.56, and the NAS/Client as 192.168.20.56, I am unable to authenticate, and it generates no logs. I have setup port mirroring on both the trunk/tagged and the untagged port that the AP is plugged into, and I am not seeing any RADIUS traffic in Wireshark when the AP is on the 20 VLan, but I do obviously see the traffic when it is not on the 20 VLan.

      Thoughts?

      Thanks!

      Chris

      1 Reply Last reply Reply Quote 0
      • jahonix
        jahonix last edited by

        You're feeding pfSense a trunk with all VLANs tagged or is that switch in L3 mode and does routing?

        1 Reply Last reply Reply Quote 0
        • First post
          Last post