Openvpn & RadiusProxy & PEAP & MS IAS

Forums Network Management ZeroShell Openvpn & RadiusProxy & PEAP & MS IAS

  • This topic is empty.
Viewing 8 posts - 1 through 8 (of 8 total)
  • Author
    Posts
  • January 20, 2009 at 2:45 pm #41412
    hzengin
    Member

    Hello,

    I’m using zeroshell as a ssl vpnserver, I configured radius proxy to microsoft IAS with SSL certificate. My active directory users authenticate with their Active directory username and password and get the IP address from IP pool on the zeroshell-openvpn. Some of the my users have a static IP information on the active directory Dial in tab. When they users log in to vpn cannot get the static ip information from ActiveDirectory.

    what is the problem? is there any way to assign static ip to some users?

    thank you
    Huseyin

    January 20, 2009 at 7:14 pm #47440
    imported_fulvio
    Participant

    Zeroshell can only use an IAS RADIUS server for authentication, but does not interpret the RADIUS attributes such as the IP address to be assigned to a user.

    Regards
    Fulvio

    January 20, 2009 at 9:18 pm #47441
    hzengin
    Member

    thank you for your reply.

    is there any meyhod for the static ip? may I can create local user for static ip usage.

    January 20, 2009 at 10:25 pm #47442
    imported_fulvio
    Participant

    The only method to automatically assign a static IP address is to use the dhcp server including the mac address of the clients.

    Regards
    Fulvio

    January 21, 2009 at 9:27 am #47443
    hzengin
    Member

    Can I use this dhcp pool/static pool for vpn users? I cant see any option on vpn settings page. I have a ip range on the vpn settings. Have can I use this pool with the dhcp’s pool?

    January 21, 2009 at 1:21 pm #47444
    fadjar340
    Member

    If you set in bridge mode of the VPN connection, just connect and DHCP will handle it.
    If you want some like static IP with DHCP, put MAC address accordingly to the IP that you want.

    Regards,
    Fadjar Tandabawana

    January 22, 2009 at 1:10 pm #47445
    hzengin
    Member

    Thank you Fadjar,

    Dhcp works with vpn and handeld ip requests. But I have a another problem with dhcp. If I provide IP address with vpn server clients get some command like below: and routing works great

    Thu Jan 22 13:56:10 2009 Route addition via IPAPI succeeded
    Thu Jan 22 13:56:10 2009 route DELETE 0.0.0.0 MASK 0.0.0.0 172.18.5.1
    Thu Jan 22 13:56:10 2009 Route deletion via IPAPI succeeded
    Thu Jan 22 13:56:10 2009 route ADD 0.0.0.0 MASK 0.0.0.0 172.24.4.1
    Thu Jan 22 13:56:10 2009 Route addition via IPAPI succeeded
    Thu Jan 22 13:56:10 2009 Initialization Sequence Completed

    SENT CONTROL [zeroshell.example.com]: ‘PUSH_REQUEST’ (status=1)
    Thu Jan 22 13:56:07 2009 PUSH: Received control message: ‘PUSH_REPLY,route-gateway 172.24.4.1,redirect-gateway,dhcp-option DNS 193.140.62.200,,ping 5,ping-restart 60,ifconfig 172.24.4.158 255.255.255.0’

    But this request and control commands cannot get from the server with dhcp server. some fields comes blank.

    SENT CONTROL [zeroshell.example.com]: ‘PUSH_REQUEST’ (status=1)
    Thu Jan 22 14:56:34 2009 PUSH: Received control message: ‘PUSH_REPLY,,,,,ping 5,ping-restart 60’
    Thu Jan 22 14:56:34 2009 OPTIONS IMPORT: timers and/or timeouts modified

    what is the differences vpn dhcp and dhcp server?

    January 22, 2009 at 6:16 pm #47446
    imported_fulvio
    Participant

    This is because if you use the dhcp to assign the IP addresses to the road warrior VPN clients then it is useless push parameters such as the default gateway and the DNS which can be assigned by the dhcp server.

    Regards
    Fulvio

  • Author
    Posts
Viewing 8 posts - 1 through 8 (of 8 total)
  • You must be logged in to reply to this topic.