From: Russell C. <ru...@co...> - 2002-05-22 11:33:29
|
On Fri, 10 May 2002 22:34, Milan P. Stanic wrote: > On Fri, May 10, 2002 at 10:41:23AM -0700, jay omayan wrote: > > I have successfully installed and run portslave with > > radius.. > > I have a small problem... I want to limit a single > > port in portslave that on a single specific user can > > use that port... > > > > example: Port number 5 - only jhay can connect to this > > port, no other user can connect but only jhay. > > What is your RADIUS server? > > NAS-Port and NAS-Port-Id attributes in radius users file. > > If You are using freeradius then try this: > (sorry for long line, but I write it because authentication > requirements must be on the same line) > > DEFAULT Auth-Type := System, NAS-Port-Id := "nas", NAS-Port != 5 > Fall-Through = 1 Good answer. However it will probably get messy when you have a dozen terminal servers which each have 4-5 ports reserved... There are plans to add all this to Portslave as that will be the best way to solve the problem, there is some base code in there already... But for the moment your answer is the only solution I think. -- If you send email to me or to a mailing list that I use which has >4 lines of legalistic junk at the end then you are specifically authorizing me to do whatever I wish with the message and all other messages from your domain, by posting the message you agree that your long legalistic sig is void. |