Radius server for wireless clients - Technical - Wazua

Welcome Guest

Search | Active Topics | Log In | Register

Wazua » Market » Technical » Radius server for wireless clients

Radius server for wireless clients

Options

Previous Topic · Next Topic

g-mi		#1 Posted : Friday, January 27, 2012 1:29:14 PM
Rank: New-farer Joined: 1/10/2011 Posts: 29 Location: nyahururu		hey guys. i set up a wireless network with around 60 users, i'v been using WPA2 for authentication but the users keep sambazaring the passphrase to their pals. i now need a AAA to authenticate the clients should use Radius since i'm using a linksys router. i need help selecting a cheap or even free software for the AAA service. The opposite of love is not hate but apathy. So too, the opposite of courage is not fear but mediocrity
Back to top		Report Abusive \| Report SPAM
User Profile

Lucid_Iam		#2 Posted : Friday, January 27, 2012 1:41:14 PM
Rank: Member Joined: 9/30/2011 Posts: 483		g-mi wrote: hey guys. i set up a wireless network with around 60 users, i'v been using WPA2 for authentication but the users keep sambazaring the passphrase to their pals. i now need a AAA to authenticate the clients should use Radius since i'm using a linksys router. i need help selecting a cheap or even free software for the AAA service. Free - You can work with freeradius (will basically do what you want) Good and not expensive- Radiator.
Back to top		Report Abusive \| Report SPAM
User Profile

grolut		#3 Posted : Friday, January 27, 2012 1:50:29 PM
Rank: Member Joined: 9/2/2010 Posts: 563 Location: Embakasi		You could try DD-WRT http://www.dd-wrt.com. Read about it here http://en.wikipedia.org/wiki/DD-WRT In a place where thought is abandoned, freedom can become a curse.
Back to top		Report Abusive \| Report SPAM
User Profile

g-mi		#4 Posted : Friday, January 27, 2012 2:08:39 PM
Rank: New-farer Joined: 1/10/2011 Posts: 29 Location: nyahururu		http://freeradius.org/business/roadmap.html#windows have looked at it and cn that im using windows for my NAS looks like a lot of trouble.looking for sth ready made so to speak The opposite of love is not hate but apathy. So too, the opposite of courage is not fear but mediocrity
Back to top		Report Abusive \| Report SPAM \| Edit by user: Friday, January 27, 2012 2:10 PM \| Reason: Not specified
User Profile

Lucid_Iam		#5 Posted : Friday, January 27, 2012 3:27:37 PM
Rank: Member Joined: 9/30/2011 Posts: 483		You will have more flexibility on linux and mysql backend. Long term you are better having something you can tweak than closed windows options. Again, most of this tools are build for unix environment as they are ISP/Telco apps.
Back to top		Report Abusive \| Report SPAM
User Profile

Djagame		#6 Posted : Friday, January 27, 2012 3:48:04 PM
Rank: Member Joined: 12/10/2008 Posts: 68 Location: Nairobi		@g-mi I think a Linux box will solve your problem, you will be able to run your radius from there. It can also act as your server, router e.t.c "We do not inherit the earth from our ancestors, we borrow it from our children" Native American Proverb
Back to top		WWW BLOG Report Abusive \| Report SPAM \| Edit by user: Friday, January 27, 2012 3:49 PM \| Reason: Not specified
User Profile

g-mi		#7 Posted : Saturday, January 28, 2012 8:34:14 AM
Rank: New-farer Joined: 1/10/2011 Posts: 29 Location: nyahururu		Lucid_Iam wrote: You will have more flexibility on linux and mysql backend. Long term you are better having something you can tweak than closed windows options. Again, most of this tools are build for unix environment as they are ISP/Telco apps. i agree on the flexibility of linux and tweaking my own scripts to my satisfaction, but the thing is the admin(client) ain't so good with linux or even windows server so im tryn to keep it very simple here. The opposite of love is not hate but apathy. So too, the opposite of courage is not fear but mediocrity
Back to top		Report Abusive \| Report SPAM
User Profile

g-mi		#8 Posted : Saturday, January 28, 2012 8:36:04 AM
Rank: New-farer Joined: 1/10/2011 Posts: 29 Location: nyahururu		Djagame wrote: @g-mi I think a Linux box will solve your problem, you will be able to run your radius from there. It can also act as your server, router e.t.c True from a techie's perspective. The opposite of love is not hate but apathy. So too, the opposite of courage is not fear but mediocrity
Back to top		Report Abusive \| Report SPAM
User Profile

g-mi		#9 Posted : Saturday, January 28, 2012 8:41:19 AM
Rank: New-farer Joined: 1/10/2011 Posts: 29 Location: nyahururu		i think i may have found a solution. will develop a django site and make it authenticate against FreeRadius server-http://www.wiggy.net/code/pyrad/. this way i can have a very simple django admin, and a web UI for the client side. it sounds doable? The opposite of love is not hate but apathy. So too, the opposite of courage is not fear but mediocrity
Back to top		Report Abusive \| Report SPAM \| Edit by user: Saturday, January 28, 2012 9:14 AM \| Reason: Not specified
User Profile

D32		#10 Posted : Sunday, February 19, 2012 8:49:47 AM
Rank: Member Joined: 2/16/2012 Posts: 808		g-mi wrote: hey guys. i set up a wireless network with around 60 users, i'v been using WPA2 for authentication but the users keep sambazaring the passphrase to their pals. i now need a AAA to authenticate the clients should use Radius since i'm using a linksys router. i need help selecting a cheap or even free software for the AAA service. You cannot use a WPA2 key to control users if your intentions is to have user management and accounting, such as an ISP, and for that reason, you are doing the right thing by seeking RADIUS. Heard of MikroTik.com? They produce highly customizable hardware & software for wireless and wired networks that can have full AAA with or without RADIUS. ISP's use them all over the world. For your case, the magic will happen with their "RouterOS" software. This software runs on top of their hardware, known as "RouterBoards". You will have to choose one or multiple RouterBoard(s) for your Access Point(s), depending on they type of network that you want to deploy. You will also have to choose an enclosure for the AP (weather proof), hence the AP will be powered by their "RouterBoards". The RouterOS software can also be run from a PC. You will get more familiar with RouterOS & RouterBoards if you go through the brouchures. http://download.mikrotik...what_is_routerboard.pdf (21mb) http://download.mikrotik.com/what_is_routeros.pdf (1mb) Quoting page 32 of what_is_routerboard.pdf "MikroTik RouterOS is the operating system of MikroTik RouterBOARD hardware. It has all the necessary features for an ISP - routing, firewall, bandwidth management, wireless access point, backhaul link, hotspot gateway, VPN server and more. RouterOS is a stand-alone operating system based on the Linux v2.6 kernel, and our goal here at MikroTik is to provide all these features with a quick and simple installation and an easy to use interface." Quoting page 11 what_is_routeros.pdf "The MikroTik HotSpot Gateway enables providing of public network access for clients using wireless or wired network connections. The user will be presented a login screen when first opening his web browser. Once a login and password is provided, the user will be allowed internet access." "This is ideal for hotel, school, airport, internet cafe or any other public place where administration doesn’t have control over the user computer. No software installation or network configuration is needed, hotspot will direct any connection request to the login form." "Extensive user management is possible by making different user profiles, each of which can allow certain uptime, upload and download speed limitation, transfer amount limitation and more." "Hotspot also supports authentication against standard RADIUS servers and MikroTik’s own User Manager which will give you a centralized management of all users in your networks." The setup will be able to authenticate and authorize users, control the amount of bandwidth and bandwidth speeds on a per user level. Should you want to proceed to use radius, then feel free, it can be integrated. It was pretty sleek when I used it. Users will select the access point, it will immediately connected them to the network without the need of entering any key, but it will not allow them to browse. When a user opens the web browser, they will see a branded login screen (which you brand. See samples in page 11 of what_is_routeros.pdf). The user will need to have received the login details from the admin. If the users paid for a particular amount of time e.i. for a month @ x speed or for a particular amount of bandwidth e.i.1Gb @ x speed, the system will handle all automatically. Users will be able to login and logout as much as they need, so long as they have not depleted the resources that they purchased for their account. - Full AAA without the need of radius. Another neat thing that can be done is to automatically give users a free demo or trial that will expire. You can setup the system to give them something like a free 20min browsing or a free 50mb when they first connect to the network. The login screen will have your details, and they will contact you when ready. The hardware is affordable: http://routerboard.com/ Once you have the hardware, you will need to purchase the RouterOS software license, which is also affordable: http://wiki.mikrotik.com...:License#License_Levels They tried to bury us, they didn't know we were seeds.
Back to top		Report Abusive \| Report SPAM
User Profile

Users browsing this topic
Guest

Wazua » Market » Technical » Radius server for wireless clients

Forum Jump

You cannot post new topics in this forum.
You cannot reply to topics in this forum.
You cannot delete your posts in this forum.
You cannot edit your posts in this forum.
You cannot create polls in this forum.
You cannot vote in polls in this forum.

Watch this topic
Email this topic
Print this topic
RSS Feed

Normal
Threaded