I'm using a shared ipoe/server.
PPPoe user are currently authenticated using username/password/mac in radius.
ipoe i just user usernames like ipoe.200.10 and since ipoe is on a dedicated vlan per user I would like to let mac flexible. For these users my radius doesn't validate in radius.
some smart users can try to authenticate using pppoe username ipoe.200.10 password ipoe.200.10.
Is there a way to create a complex user that is impossible to authenticate in pppoe?
or i can manually put a line in code to when accel get the pppoe username. I check if username contains a ipoe string and change the username. like by example:
*pppoe_username
*unwanted_str = "ipoe"
if(strstr(pppoe_username, unwanted_str) != NULL) {
strcpy(src, ""); or strcpy(src, "unwanted_username");
So it i'll got access denied in radius. If I use a line like that where could be the better place to put in accel-ppp code?
Ignore ipoe users for pppoe
Re: Ignore ipoe users for pppoe
maybe your radius can also check NAS-Port-Type attribute
it is "Ethernet" for ipoe and "Virtual" for ppp
it is "Ethernet" for ipoe and "Virtual" for ppp