Openvpn & RadiusProxy & PEAP & MS IAS

Home Page Forums Network Management ZeroShell Openvpn & RadiusProxy & PEAP & MS IAS

This topic contains 6 replies, has 0 voices, and was last updated by  hzengin 10 years, 2 months ago.

Viewing 8 posts - 1 through 8 (of 8 total)
  • Author
    Posts
  • #41412

    hzengin
    Member

    Hello,

    I’m using zeroshell as a ssl vpnserver, I configured radius proxy to microsoft IAS with SSL certificate. My active directory users authenticate with their Active directory username and password and get the IP address from IP pool on the zeroshell-openvpn. Some of the my users have a static IP information on the active directory Dial in tab. When they users log in to vpn cannot get the static ip information from ActiveDirectory.

    what is the problem? is there any way to assign static ip to some users?

    thank you
    Huseyin

    #47440

    imported_fulvio
    Participant

    Zeroshell can only use an IAS RADIUS server for authentication, but does not interpret the RADIUS attributes such as the IP address to be assigned to a user.

    Regards
    Fulvio

    #47441

    hzengin
    Member

    thank you for your reply.

    is there any meyhod for the static ip? may I can create local user for static ip usage.

    #47442

    imported_fulvio
    Participant

    The only method to automatically assign a static IP address is to use the dhcp server including the mac address of the clients.

    Regards
    Fulvio

    #47443

    hzengin
    Member

    Can I use this dhcp pool/static pool for vpn users? I cant see any option on vpn settings page. I have a ip range on the vpn settings. Have can I use this pool with the dhcp’s pool?

    #47444

    fadjar340
    Member

    If you set in bridge mode of the VPN connection, just connect and DHCP will handle it.
    If you want some like static IP with DHCP, put MAC address accordingly to the IP that you want.

    Regards,
    Fadjar Tandabawana

    #47445

    hzengin
    Member

    Thank you Fadjar,

    Dhcp works with vpn and handeld ip requests. But I have a another problem with dhcp. If I provide IP address with vpn server clients get some command like below: and routing works great

    Thu Jan 22 13:56:10 2009 Route addition via IPAPI succeeded
    Thu Jan 22 13:56:10 2009 route DELETE 0.0.0.0 MASK 0.0.0.0 172.18.5.1
    Thu Jan 22 13:56:10 2009 Route deletion via IPAPI succeeded
    Thu Jan 22 13:56:10 2009 route ADD 0.0.0.0 MASK 0.0.0.0 172.24.4.1
    Thu Jan 22 13:56:10 2009 Route addition via IPAPI succeeded
    Thu Jan 22 13:56:10 2009 Initialization Sequence Completed

    SENT CONTROL [zeroshell.example.com]: ‘PUSH_REQUEST’ (status=1)
    Thu Jan 22 13:56:07 2009 PUSH: Received control message: ‘PUSH_REPLY,route-gateway 172.24.4.1,redirect-gateway,dhcp-option DNS 193.140.62.200,,ping 5,ping-restart 60,ifconfig 172.24.4.158 255.255.255.0’

    But this request and control commands cannot get from the server with dhcp server. some fields comes blank.

    SENT CONTROL [zeroshell.example.com]: ‘PUSH_REQUEST’ (status=1)
    Thu Jan 22 14:56:34 2009 PUSH: Received control message: ‘PUSH_REPLY,,,,,ping 5,ping-restart 60’
    Thu Jan 22 14:56:34 2009 OPTIONS IMPORT: timers and/or timeouts modified

    what is the differences vpn dhcp and dhcp server?

    #47446

    imported_fulvio
    Participant

    This is because if you use the dhcp to assign the IP addresses to the road warrior VPN clients then it is useless push parameters such as the default gateway and the DNS which can be assigned by the dhcp server.

    Regards
    Fulvio

Viewing 8 posts - 1 through 8 (of 8 total)

You must be logged in to reply to this topic.