<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html>
<head>
<meta content="text/html;charset=ISO-8859-1" http-equiv="Content-Type">
<title></title>
</head>
<body bgcolor="#ffffff" text="#000000">
Alan DeKok schrieb:
<blockquote cite="mid:49666BAF.1020004@deployingradius.com" type="cite">
<pre wrap="">Norbert Wegener wrote:
</pre>
<blockquote type="cite">
<blockquote type="cite">
<pre wrap=""> That configuration can be added manually, by doing internal proxying
to the virtual server.
</pre>
</blockquote>
<pre wrap="">Will this also be possible, when freeradius gets its information out of
a mysql database?
</pre>
</blockquote>
<pre wrap=""><!---->
Of course!
</pre>
<blockquote type="cite">
<pre wrap="">The only place to modify addresses I found is the preproxy_users file,
which seems to be used by the rlm_files module only.
</pre>
</blockquote>
<pre wrap=""><!---->
I'm not sure what that means...
You could do something like:
...
update control {
Proxy-To-Realm := "%{sql:SELECT ... from.. where %{NAS-IP-Addres}"
}
</pre>
</blockquote>
OK, but I did not yet hear about that before and it seems no topic for
the mass media: googling for Proxy-To-Realm gives 94 results.<br>
<br>
<blockquote cite="mid:49666BAF.1020004@deployingradius.com" type="cite">
<pre wrap="">
Could you describe more of your requirements??
</pre>
</blockquote>
In a greater installation there are numerous different rules for vlan
assignements. Before applying even the slightest configuration change
to a production system, I want to make sure, that as much different
configurations as possible have been checked to deliver those
attributes that they are expected to. <br>
Obviously a part of those checks can be done using radtest. Running
radtest with nasip as an argument should therefore bring freeradius
to use the server the nasip belongs to, and not the server the machine
running radtest belongs to.<br>
<br>
Btw: Is eapol_test *the* tool to do such checks in an automated way for
eap/tls authentications or is there a better one available?<br>
<br>
Norbert Wegener<br>
<br>
<blockquote cite="mid:49666BAF.1020004@deployingradius.com" type="cite">
<pre wrap="">
Alan DeKok.
-
List info/subscribe/unsubscribe? See <a class="moz-txt-link-freetext" href="http://www.freeradius.org/list/users.html">http://www.freeradius.org/list/users.html</a>
</pre>
</blockquote>
<br>
</body>
</html>