Akagi201
8/4/2014 - 11:07 AM

freeradius-mac-auth.md

Plain Mac-Auth

服务器只做macauth, 他检查mac地址对照users风格文件.

raddb/policy.conf

NAS通常在Calling-Station-ID attribute中发送地址, 有下面几种常用格式:

  • 00:11:22:33:44:55
  • 00-11-22-33-44-55
  • 0011.2233.4455
  • 大写十六进制
  • 小写十六进制

把他们在服务器上转换成统一的格式是合理的

#
# Rewrite called station id attribute into a standard format.
#
rewrite_calling_station_id {
        if (Calling-Station-Id =~ /([0-9a-f]{2})[-:]?([0-9a-f]{2})[-:.]?([0-9a-f]{2})[-:]?([0-9a-f]{2})[-:.]?([0-9a-f]{2})[-:]?([0-9a-f]{2})/i) {
                update request {
                        Calling-Station-Id := "%{tolower:%{1}-%{2}-%{3}-%{4}-%{5}-%{6}}"
                }
        }
        else {
                noop
        }
}

Refs