source: npl/commonservers/radius/raddb/clients.conf @ 5160d62

perl-5.22
Last change on this file since 5160d62 was c5c522c, checked in by Edwin Eefting <edwin@datux.nl>, 8 years ago

initial commit, transferred from cleaned syn3 svn tree
  • Property mode set to 100644
File size: 2.9 KB
Line 
1#
2# clients.conf - client configuration directives
3#
4#######################################################################
5
6#######################################################################
7#
8#  Definition of a RADIUS client (usually a NAS).
9#
10#  The information given here over rides anything given in the
11#  'clients' file, or in the 'naslist' file.  The configuration here
12#  contains all of the information from those two files, and allows
13#  for more configuration items.
14#
15#  The "shortname" is be used for logging.  The "nastype", "login" and
16#  "password" fields are mainly used for checkrad and are optional.
17#
18
19#
20#  Defines a RADIUS client.  The format is 'client [hostname|ip-address]'
21#
22#  '127.0.0.1' is another name for 'localhost'.  It is enabled by default,
23#  to allow testing of the server after an initial installation.  If you
24#  are not going to be permitting RADIUS queries from localhost, we suggest
25#  that you delete, or comment out, this entry.
26#
27client 127.0.0.1 {
28        #
29        #  The shared secret use to "encrypt" and "sign" packets between
30        #  the NAS and FreeRADIUS.  You MUST change this secret from the
31        #  default, otherwise it's not a secret any more!
32        #
33        #  The secret can be any string, up to 31 characters in length.
34        #
35        secret          = testing123
36
37        #
38        #  The short name is used as an alias for the fully qualified
39        #  domain name, or the IP address.
40        #
41        shortname       = localhost
42
43        #
44        # the following three fields are optional, but may be used by
45        # checkrad.pl for simultaneous use checks
46        #
47
48        #
49        # The nastype tells 'checkrad.pl' which NAS-specific method to
50        #  use to query the NAS for simultaneous use.
51        #
52        #  Permitted NAS types are:
53        #
54        #       cisco
55        #       computone
56        #       livingston
57        #       max40xx
58        #       multitech
59        #       netserver
60        #       pathras
61        #       patton
62        #       portslave
63        #       tc
64        #       usrhiper
65        #       other           # for all other types
66
67        #
68        nastype     = other     # localhost isn't usually a NAS...
69
70        #
71        #  The following two configurations are for future use.
72        #  The 'naspasswd' file is currently used to store the NAS
73        #  login name and password, which is used by checkrad.pl
74        #  when querying the NAS for simultaneous use.
75        #
76#       login       = !root
77#       password    = someadminpas
78}
79
80#client some.host.org {
81#       secret          = testing123
82#       shortname       = localhost
83#}
84
85#
86#  You can now specify one secret for a network of clients.
87#  When a client request comes in, the BEST match is chosen.
88#  i.e. The entry from the smallest possible network.
89#
90#client 192.168.0.0/24 {
91#       secret          = testing123-1
92#       shortname       = private-network-1
93#}
94#
95#client 192.168.0.0/16 {
96#       secret          = testing123-2
97#       shortname       = private-network-2
98#}
99
100
101#client 10.10.10.10 {
102#       # secret and password are mapped through the "secrets" file.
103#       secret      = testing123
104#       shortname   = liv1
105#       # the following three fields are optional, but may be used by
106#       # checkrad.pl for simultaneous usage checks
107#       nastype     = livingston
108#       login       = !root
109#       password    = someadminpas
110#}
111
Note: See TracBrowser for help on using the repository browser.