[ previous ] [ next ] [ threads ]
 
 From:  Andrew Hull <list at racc2000 dot com>
 To:  M0n0 Wall list <m0n0wall at lists dot m0n0 dot ch>
 Subject:  Re: [m0n0wall] Radius nas-port attribute problem and pach
 Date:  Fri, 28 Oct 2005 09:43:30 -0400
Jonathan De Graeve wrote:
>
> Assume the following: 
> LAN netmask of 10.0.0.0/23
> 
> 10.0.0.56 Nas-Port=56
> 10.0.1.56 Nas-Port=56
> => ERROR
> You at least need the 2full octets... (with 005 instead of 5)
> 
> 

Thanks for your feed back.

You are absolutely right Jonathan. Limiting the subnet to 24 works for 
my current networking topology, but definitely not a solution for the 
entire package.

Doing this:

<SNIP>

  5,6,0,$ip_exp[1],$ip_exp[2],$ip_exp[3],    // nasPort

<!SNIP>

would definitely produce a unique port number for everything up to a 
subnet of 8, but the port number "seems" random.

192.168.1.52
NAS-Port = 0000 0000 1010 1000 0000 0001 0011 0100
Base10 makes a port number of 11010356. Kind of a meaningless number.

What do you think?

Andrew