Thank you very much, I will test it out In the mean time I figured out to use radgroupcheck with values Auth-Type=Reject and some users associated to that usergroup. Thanks again! 06, Alan DeKok <aland@deployingradius.com> wrote:
"Guilherme Franco" <guilhermefranco@gmail.com> wrote:
The problem is, If PAID != YES, the user is not found by the SELECT (correctly) but the request is still proxied to the ISP (normal proxy behaviour).
What can I do to reject the request and not proxy it?
Configure an SQL module instance *just* for this query. See doc/configurable_failover for an example "sql sql1 ...". Let's call this module "is_paid". See doc/configurable_failover again for what to do on module return codes.
Then in the "authorize" section, do: ... is_paid { notfound = reject } ...
This will make the user be rejected if they are not paid up.
Alan DeKok. -- http://deployingradius.com - The web site of the book http://deployingradius.com/blog/ - The blog - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html