Stefan Winter wrote:
That way, it could safely be used in the pre-proxy section to white-list attributes in authentication requests, but give away the accounting info unconditionally to a home server.
This can still be done: pre-proxy { ... if (Packet-Type != Accounting-Request) { attr_filter_preproxy } ... }
Was this intentional?
Yes. The previous behavior made it *impossible* to do filtering on accounting packets in preproxy.
Then the default attrs.pre-proxy should contain at least the basic accounting-specific attribute like Acct-Status-Type - otherwise, the module will by default cripple every accounting request to uselessness.
That's probably true, too...
But actually, my preferred way of resolving this would be to let accounting packets untouched...
Welcome to the power of "unlang". :) Alan DeKok.