Topic: Multiple access points in different locations

Hello everyone

I have FreeRADIUS & Chillispot installed on Fedora Core 7. I have 3 seperate locations (the branches of our company) and would like the users to get authenticated againest the RADIUS server that is located in the headquarter office.

The only connection medium between these branches is: Internet. My question is: Can I direct the authentication requests to the RADIUS server over the internet? If yes, how? And can I disable Chillispot's DHCP server and use a local DCHP server from the access point itself for each branch?

Thank you in advance for the help.

Re: Multiple access points in different locations

You can authenticate against a single radius server easily over the internet.

Your problem is the fact that you have multiple locations - and multiple subnets, and your only solution is going to be a chillispot box at each location or if you have wireless ap's that can use DD-WRT with enough flash for chilli, use that instead). You can configure each box to authenticate against your central radius server. Or, if need be, in case of problems with duplicate username space, you can set up virtual servers in FreeRadius and still have a central RADIUS server.

You cannot shut off DHCP, otherwise chilli will not work. There is no way to tell chilli to use an external DHCP server.

Re: Multiple access points in different locations

Thank you mezzmor for the response.

Well I gave it a shot and it worked prefectly fine with a single server!

Here is what I did:
- I configured eth0 on the server with a public IP address.
- I directed the authentication requests to the cerntral server by configuring chillispot module on the access points.
- I didn't connect eth1 to anything (just left it to work without a cable).
- I even changed the subnet on the AP's to be different from 192.168.182.0/24 and it worked perfectly fine!

Now the client connects to the AP. The AP gives him the DCHP configurations. When he tries to browse, it directs him to the login page. When he enters the username-password pair, FreeRadius receives the request and processes it normally.

Thanks again mezzmor.

4 (edited by Wilford77 2015-11-23 12:39:01)

Re: Multiple access points in different locations

Well the issue is one thing that not enough persons are speaking intelligently about. I am very completely satisfied that.

Optical Express