David Mitchell wrote:
David Mitchell wrote:
I'm trying to figure out how to have FreeRadius not send an authentication failed response if it can't reach a proxy. What I would prefer is that it simply not respond at all. That would allow my NAS to fall back to using a local password if my proxy is down or unreachable. A quick look at the source to event.c makes it appear that sending the reject is hard coded. Is there some way around this that I'm missing? Thanks in advance,
I solved this with the following in radiusd.conf, in case any body else has the same problem.
This should say it's in sites-enabled/default, not radiusd.conf. Oops. -David Mitchell
post-proxy { # If the server tries to proxy a request and the request # times out, then the # request is processed through the modules in this section. # # 'fail' causes the server to ignore the request, so the NAS # will fall back to the line/enable/whatever password. Post-Proxy-Type Fail { fail }
}
-David Mitchell
-- ----------------------------------------------------------------- | David Mitchell (mitchell@ucar.edu) Network Engineer IV | | Tel: (303) 497-1845 National Center for | | FAX: (303) 497-1818 Atmospheric Research | -----------------------------------------------------------------