Community discussions

MikroTik App
 
torfin
just joined
Topic Author
Posts: 5
Joined: Thu Mar 18, 2021 5:58 pm

OpenVPN / freeradius / Framed-Pool

Fri Apr 23, 2021 5:34 pm

Hello,

I have a ldap with some users and some groups with differents rights.
i use freeradius to interface mikrotik chr and ldap.

When i request the freeradius the answer contain the parameters Framed-Pool:
-> # radtest cmc cmc localhost 1812 testing123
Sent Access-Request Id 199 from 0.0.0.0:49434 to 127.0.0.1:1812 length 73
User-Name = "cmc"
User-Password = "cmc"
NAS-IP-Address = 172.22.2.253
NAS-Port = 1812
Message-Authenticator = 0x00
Cleartext-Password = "cmc"
Received Access-Accept Id 199 from 127.0.0.1:1812 to 127.0.0.1:49434 length 25
Framed-Pool = "cmc"

And i need to create an OpenVPN server on the mikrotik.
with different pool for the differents rights groups.
for exemple:
  • admin-pool 10.8.0.1-10.8.0.253, the mikrotik will have 10.8.0.254
  • tech-pool 10.8.1.1-10.8.1.253, the mikrotik will have 10.8.1.254
  • cmc-pool 10.8.2.1-10.8.2.253, the mikrotik will have 10.8.2.254
After that i have some firewall rules to close or open some access in function of the source IP / dest IP.


So when the user connected to the OpenVPN Server, it will ask radius to check Authentification / Authorization.
the user can connect to the openvpn but the pool is the default, not the pool mentionned in framed pool arguments

I would like to know how i can do that?

PS: i can changed the arguments Framed-Pool to another if need for the mikrotik. I can rename pool and the groups into the ldap.

Thanks

Who is online

Users browsing this forum: Ahrefs [Bot], aoakeley, Google [Bot], kub1x, smirgo, sybadi and 93 guests