bvm-radius: update roaming0/roaming1 IPs

This commit is contained in:
Luke Granger-Brown 2024-02-12 19:25:16 +00:00
parent d666e85223
commit f290e16bd7
2 changed files with 8 additions and 11 deletions

View file

@ -34,14 +34,11 @@ in {
extraCommands = ''
# Allow JANET inbound RADIUS traffic.
# roaming0.ja.net
iptables -A nixos-fw -p udp --dport 1812 --src 194.82.174.185 -j nixos-fw-accept
ip6tables -A nixos-fw -p udp --dport 1812 --src 2001:630:1:128::185 -j nixos-fw-accept
iptables -A nixos-fw -p udp --dport 1812 --src 193.63.195.58 -j nixos-fw-accept
ip6tables -A nixos-fw -p udp --dport 1812 --src 2001:630:1:133::58 -j nixos-fw-accept
# roaming1.ja.net
iptables -A nixos-fw -p udp --dport 1812 --src 194.83.56.233 -j nixos-fw-accept
ip6tables -A nixos-fw -p udp --dport 1812 --src 2001:630:1:12a::233 -j nixos-fw-accept
# roaming2.ja.net (old)
iptables -A nixos-fw -p udp --dport 1812 --src 194.83.56.249 -j nixos-fw-accept
ip6tables -A nixos-fw -p udp --dport 1812 --src 2001:630:1:129::249 -j nixos-fw-accept
iptables -A nixos-fw -p udp --dport 1812 --src 193.63.195.34 -j nixos-fw-accept
ip6tables -A nixos-fw -p udp --dport 1812 --src 2001:630:1:132::34 -j nixos-fw-accept
# roaming2.ja.net (new)
iptables -A nixos-fw -p udp --dport 1812 --src 193.63.195.50 -j nixos-fw-accept
ip6tables -A nixos-fw -p udp --dport 1812 --src 2001:630:1:133::50 -j nixos-fw-accept

View file

@ -5,25 +5,25 @@ client localhost {
client eduroam_flr_server_1_v4 {
# roaming0.ja.net
ipaddr = 194.82.174.185
ipaddr = 193.63.195.58
secret = {{JANET_ROAMING0_SECRET}}
nastype = 'eduroam_flr'
}
client eduroam_flr_server_1_v6 {
# roaming0.ja.net
ipv6addr = 2001:630:1:128::185
ipv6addr = 2001:630:1:133::58
secret = {{JANET_ROAMING0_SECRET}}
nastype = 'eduroam_flr'
}
client eduroam_flr_server_2_v4 {
# roaming1.ja.net
ipaddr = 194.83.56.233
ipaddr = 193.63.195.34
secret = {{JANET_ROAMING1_SECRET}}
nastype = 'eduroam_flr'
}
client eduroam_flr_server_2_v6 {
# roaming1.ja.net
ipv6addr = 2001:630:1:12a::233
ipv6addr = 2001:630:1:132::34
secret = {{JANET_ROAMING1_SECRET}}
nastype = 'eduroam_flr'
}