MikroTik

Hi guys.

I'm using MT with three atheros card in ap-bridge mode, this cards sharing the same SSID and have distinct channel numbers.

With access-list option, I can allow that one mac-address connect in a specify card only.

My ask
In Mac authentication, via Radius server, is possible specify the card name that custumer connect and allow the connection only in this card ?

[*] Sorry my bad English and I hope that anyone can help me[/i]

Try searching old posts, I believe I saw one where the answer was to set the username in RADIUS to the MAC address.

Yes, you can do that...

FreeRadius example:

00:00:00:00:00:00 Auth-Type := Accept, User-Password == "", NAS-Port-Id == "CARD NAME"
Service-Type = Framed-User,
Framed-Protocol = PPP,
Framed-MTU = 1500,
Framed-Compression = Van-Jacobsen-TCP-IP,
Ascend-Data-Rate = 256, (if want specify down rate)
Ascend-XMit-Rate = 128 (if want specify up rate)

Yes, you can do that...

FreeRadius example:

00:00:00:00:00:00 Auth-Type := Accept, User-Password == "", NAS-Port-Id == "CARD NAME"
Service-Type = Framed-User,
Framed-Protocol = PPP,
Framed-MTU = 1500,
Framed-Compression = Van-Jacobsen-TCP-IP,
Ascend-Data-Rate = 256, (if want specify down rate)
Ascend-XMit-Rate = 128 (if want specify up rate)

Hi barrozo,

In your example, using freeradius server, I do should insert values in radcheck table ?

radcheck
UserName Attribute op Value
00:00:00:00:00:00:00 Password == empty
00:00:00:00:00:00:00 Nas-Port-Id == MyCard

It's right ?

Yes,

00:00:00:00:00:00:00 -> Mac Address of the client