The issue is that we want to restrict based on called number (NAS-Port-DNIS)
for some servers. The problem is that not all of our servers provide the
called number attribute, so if we were to place a list of allowed called
numbers in RadATConfigs, no one calling on those servers would be
authenticated. The best solution we can think of is to point the special
servers to a different authenticator. Rather than setting up a second
server to handle two or three servers, we would like to run another session
of RadiusNT, listening on, say, port 1650. This way we could use a whole
separate set of auth properties in the second session.
How does that sound? Any better ideas?
SOCKET Internet Services