Ignore ipoe users for pppoe

Questions related to general functionality
Post Reply
hugleo
Posts: 59
Joined: 13 Apr 2016, 14:28

Ignore ipoe users for pppoe

Post by hugleo »

I'm using a shared ipoe/server.
PPPoe user are currently authenticated using username/password/mac in radius.
ipoe i just user usernames like ipoe.200.10 and since ipoe is on a dedicated vlan per user I would like to let mac flexible. For these users my radius doesn't validate in radius.

some smart users can try to authenticate using pppoe username ipoe.200.10 password ipoe.200.10.
Is there a way to create a complex user that is impossible to authenticate in pppoe?
or i can manually put a line in code to when accel get the pppoe username. I check if username contains a ipoe string and change the username. like by example:
*pppoe_username
*unwanted_str = "ipoe"

if(strstr(pppoe_username, unwanted_str) != NULL) {
strcpy(src, ""); or strcpy(src, "unwanted_username");

So it i'll got access denied in radius. If I use a line like that where could be the better place to put in accel-ppp code?
Dmitry
Администратор
Posts: 954
Joined: 09 Oct 2014, 10:06

Re: Ignore ipoe users for pppoe

Post by Dmitry »

maybe your radius can also check NAS-Port-Type attribute
it is "Ethernet" for ipoe and "Virtual" for ppp
Post Reply