Date: Thu, 26 Jan 2006 09:19:02 +0100 (CET) From: Mohacsi Janos <mohacsi@niif.hu> To: gahn <ipfreak@yahoo.com> Cc: freebsd security <freebsd-security@freebsd.org>, freebsd general questions <freebsd-questions@freebsd.org> Subject: Re: mpd and radius Message-ID: <20060126090312.N1888@mignon.ki.iif.hu> In-Reply-To: <20060126052422.34743.qmail@web52114.mail.yahoo.com> References: <20060126052422.34743.qmail@web52114.mail.yahoo.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Wed, 25 Jan 2006, gahn wrote: > Hi all: > > I ahve some basic questions regarding the mpd.conf: > > set radius retries 3 > set radius timeout 3 > set radius server 192.168.128.101 testing123 1812 1813 > set radius me 1.1.1.1 > set bundle enable radius-auth radius-fallback > > Here my radius server is 192.168.128.101 and interanl > interface of this mpd server is 192.168.64.65 > > 1) What is this "testing123"? is that key between > radius server and the nas (the pptp box)? Yes. This is a shared secret between your radius server and "nas" boxes. Any clients which is accessing radius server should use their respective shared secret. If you are using freeradius you should configure it in clients.conf and your "nas" box. You should also select a reasonably complex shared secret to prevent brute force guessing attack against your radius server. > > "set radius me 1.1.1.1 > #send the given IP in the RAD_NAS_IP_ADDRESS attribute > to the server." This one is the IP address configured for this NAS/client... Regards, Janos Mohacsi
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20060126090312.N1888>