Hey guys.
Is there a way to authenticate someone who’s using a static IP, through RADIUS by their MAC address? We’re doing this for DHCP (for dynamic IP customers + bandwidth limiting) and wireless (wireless access control).
But for static IP customers, we have to manually put in a static ARP entry and Simple Queue. This is not too big of a deal, its just preferred if possible, to have static IPs go thru the same RADIUS authentication.
Is this something we can expect for RouterOS 2.10?
Thanks,
Matt
Of course, we can always do it by a static DHCP lease. That would get it through RADIUS like I want. I was just curious if this could be accomplished by static IP alone.
Matt
Uhm.. Calling-Station-Id for a check item in Radius, Framed-IP-Address for a reply item?
If the client does come from xyz MAC address, give it xyz IP address. If customer does not come from xyz MAC address, deny the authentication…
??
service (multiple choice: hotspot | login | ppp | telephony | wireless | dhcp; default: “”) - router services that will use this RADIUS server
hotspot - HotSpot authentication service
login - router’s local user authentication
ppp - Point-to-Point clients authentication
telephony - IP telephony accounting
wireless - wireless client authentication (client’s MAC address is sent as User-Name)
dhcp - DHCP protocol client authentication (client’s MAC address is sent as User-Name)
There’s no ‘ethernet’ authentication setting within MikroTik’s RADIUS user interface.. so how would MikroTik know to catch it and authenticate against the RADIUS server from here?
Hmm.. this thread is stuck in a rut.
As far as I know, ethernet/static IP does not automatically try to authenticate via RADIUS. If it does, I’d like to find out which router service it does this under. (I thought maybe ‘login’ would get it, but seeing actual results and looking back over the information for the ‘login’ service, I see that thats not it.)
I’m not doing PPPoE if you thought that. (Sorry.)
Thanks.