radreply and proxied packet questions
Hi. I have an installation with Freeradius and MySQL and have a few question. 1. Values in radreply seem to be ignored from the reply to AAA-client when proxying packets? Is this by design or have i configured something wrong? 2. Is it possible to do this in the post-proxy section of /sites-enabled/default? If Access-accept is received from backend server, return per user values from radreply table If Access-reject is received, reject the user and send no attributes. If the above is possible, can someone give me an example of how this is to be configured? how the if, then, else should/could look like? Thanks in advance. /Mika -- View this message in context: http://www.nabble.com/radreply-and-proxied-packet-questions-tp25147932p25147... Sent from the FreeRadius - User mailing list archive at Nabble.com.
1. Values in radreply seem to be ignored from the reply to AAA-client when proxying packets? Is this by design or have i configured something wrong?
You should do it in post-proxy.
2. Is it possible to do this in the post-proxy section of /sites-enabled/default?
Yes. List sql.authorize there. Ivan Kalik Kalik Informatika ISP
2. Is it possible to do this in the post-proxy section of /sites-enabled/default?
Yes. List sql.authorize there.
I am sorry Ivan, i don´t understand your answer. What do you mean by listing sql.authorize? Is sql.authorize a module or file formatted in a special way? Or is it just to add a line with sql.authorize in the post-proxy section? Thanks again. /newbie -- View this message in context: http://www.nabble.com/radreply-and-proxied-packet-questions-tp25147932p25151... Sent from the FreeRadius - User mailing list archive at Nabble.com.
2. Is it possible to do this in the post-proxy section of /sites-enabled/default?
Yes. List sql.authorize there.
I am sorry Ivan, i don´t understand your answer. What do you mean by listing sql.authorize? Is sql.authorize a module or file formatted in a special way?
It is the part of the sql module called when sql is listed in authorize section.
Or is it just to add a line with sql.authorize in the post-proxy section?
Yes. Ivan Kalik Kalik Informatika ISP
participants (2)
-
Ivan Kalik -
mikoi